last executing test programs:

1.517559384s ago: executing program 1 (id=848):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000013000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0, 0x20)

1.514402058s ago: executing program 1 (id=852):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x7}, 0x18)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000044, &(0x7f0000000240)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@nodioread_nolock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@nouid32}, {@nobh}, {@user_xattr}, {@nouid32}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000001bc0)="$eJzs3d9rW+UbAPDnpM1+f7/rYAwVkcIunMyla+uPCV7MS9HhQO9naM/KaLqMJh1rHbhduBtvZAgiDsR7vfdKhv+Af8VAB0NG0QtvKic9abs1adIuWzrz+cDZ3jfnJO95cs7z9n1zTkgAA2s0+6cQ8WJEfJVEHI6IJF83HPnK0dXtlh9en8qWJFZWPv4zaWyX1Zuv1XzewbzyQkT8+kXEycLmdmuLS7PlSiWdz+tj9bkrY7XFpVOX5soz6Ux6eWJy8sybkxPvvP1Wz2J97fzf33509/0zXx5f/uan+0duJ3E2DuXrNsbxBG5srIzGaP6eFOPsYxuOr/7XizZ3haTfO8CODOV5XoysDzgcQ3nWA/99n0fECjCgEvkPA6o5DmjO7Xs0D35uPHhvdQK0Of7h1c9GYl9jbnRgOXlkZpTNd0d60H7Wxs9/3LmdLdG7zyEAOrpxMyJODw9v7v+SvP/budNdbPN4G/o/eHbuZuOf11uNfwpr459oMf452CJ3d6Jz/hfu96CZtrLx37stx79rF61GhvLa/xpjvmJy8VIlzfq2/0fEiSjuzerjW7RxZvneSrt1G8d/2ZK13xwL5vtxf3jvo8+ZLtfLTxLzRg9uRrzUcvybrB3/pMXxz96P8122cSy980q7dZ3jf7pWfoh4teXxX7+ilWx9fXKscT6MNc+Kzf66dey3du33O/7s+B/YOv6RZOP12tr22/h+3z9pu3WPxB/dn/97kk8a5T35Y9fK9fr8eMSe5MPNj0+sP7dZb26fxX/i+Nb93/r5/8va6+yPiE+7jP/W0R9f3tdN/H06/tPbOv7bL9z74LPv2rXfXf/3RqN0In+km/6vw34VY8dnMwAAAAAAAOxehYg4FEmhtFYuFEql1fs7jsaBQqVaq5+8WF24PB2N78qORLHQvNJ9eMP9EOP5/bDN+sRj9cmIOBIRXw/tb9RLU9XKdL+DBwAAAAAAAAAAAAAAAAAAgF3iYJvv/2d+H+r33gFPnZ/8hsHVMf978UtPwK7k7z8MLvkPg0v+w+CS/zC45D8MLvkPg0v+w+CS/wAAAAAAAAAAAAAAAAAAAAAAAAAAANBT58+dy5aV5YfXp7L69NXFhdnq1VPTaW22NLcwVZqqzl8pzVSrM5W0NFWd6/R6lWr1yvhELFwbq6e1+lhtcenCXHXhcv3CpbnyTHohLT6TqAAAAAAAAAAAAAAAAAAAAOD5Ultcmi1XKum8gsKOCsO7YzcUelzod88EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOv+DQAA//8Kozfs")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x58)
copy_file_range(r1, 0x0, r1, &(0x7f00000004c0)=0xae8, 0x863, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xf0)
pwritev2(r2, &(0x7f0000000ec0)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0x5413, 0x0, 0x0)
r3 = memfd_create(&(0x7f0000000040)='\x00'/12, 0x4)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3000002, 0x11, r3, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
write(r2, &(0x7f0000001700)="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", 0xfffffed6)

1.410846266s ago: executing program 1 (id=857):
sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000700)=ANY=[], 0x1c}}, 0x4000810)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB="440000000201010100000000000000000200000004000180180002801400018008000100b04c94a708000200ac1414aa14001980"], 0x44}}, 0x0)

1.327891025s ago: executing program 1 (id=859):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="c0020000100063d10000200000000000fe8000000000000000000000000000bbfe8000000000000000000000000000aa0000000000000000000000003a000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc01000000000000000000000000000000000000330000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000b000000000000000000000000000000ffffffffffffffff000000000000000003000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001600000000020000000000000000000000bf010100636d61632861657329"], 0x2c0}, 0x1, 0x0, 0x0, 0x40000}, 0x4004)

1.261208693s ago: executing program 0 (id=865):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000140), r0)
sendmsg$NLBL_MGMT_C_LISTDEF(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x4004001}, 0x40)

1.209335968s ago: executing program 1 (id=866):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x7, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000240), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r3, 0xc004743e, &(0x7f00000000c0))
pwritev(r3, &(0x7f0000000400)=[{&(0x7f0000000200)='\x00!', 0x2}], 0x1, 0xee, 0x1)
r4 = socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f0000000980)='./file0\x00', 0x3000010, &(0x7f0000000100)={[{@resuid}, {@nobh}]}, 0x1, 0x519, &(0x7f00000009c0)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000480)='cachefiles_ondemand_close\x00', r1, 0x0, 0x6}, 0x18)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000fc0)=@raw={'raw\x00', 0x8, 0x3, 0x4e8, 0x0, 0x11, 0x148, 0x340, 0x0, 0x450, 0x2a8, 0x2a8, 0x450, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x3f, 0x0, 0x88000000, 0x3, 0x7}}}, @common=@unspec=@bpf1={{0x230}, @pinned={0x1, 0x0, 0x0, './file0\x00'}}]}, @unspec=@CT0={0x48}}, {{@ip={@multicast2, @empty, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@unspec=@quota={{0x38}, {0x0, 0x0, 0x81}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x4f, 0x7, "72f6daeff0a9c6294e211d2d88fe6dcff5d0e552201da3b7a1fdb30dcb59"}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x548)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000100)={'ip6_vti0\x00', &(0x7f0000000040)={'ip6_vti0\x00', <r6=>0x0, 0x2f, 0x4, 0x4, 0x3, 0x4, @remote, @remote, 0x700, 0x78cc, 0x0, 0x40b7}})
sendmsg$nl_route_sched(r4, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=@deltclass={0x38, 0x29, 0x200, 0x70bd2d, 0x25dfdbfb, {0x0, 0x0, 0x0, r6, {0x2, 0x10}, {0x3, 0x9}, {0x0, 0x5}}, [@tclass_kind_options=@c_taprio={0xb}, @TCA_RATE={0x6, 0x5, {0x1, 0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000084}, 0x800)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000b80)=@security={'security\x00', 0x64, 0x4, 0x2c8, 0x100000c, 0x0, 0xe0, 0x178, 0xffffffff, 0xffffffff, 0x230, 0x230, 0x230, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0x98, 0xe0, 0x0, {0x0, 0x1000000000000}, [@common=@inet=@dscp={{0x28}, {0x10, 0x1}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz1\x00', {0x2}}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x42}}}, {{@ip={@multicast2, @private=0xa010101, 0xff000000, 0xff, 'veth0_macvtap\x00', 'vcan0\x00', {0xff}, {0xff}, 0x21}, 0x0, 0x90, 0xb8, 0x0, {}, [@common=@socket0={{0x20}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff, 0x2, 0x7}, {0x2, 0x0, 0x1}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x328)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r7 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r7, &(0x7f0000000200)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
writev(r7, &(0x7f0000000140)=[{0x0}, {&(0x7f0000000400)="56db4c37cf6d646282c492ac126d6ae4b9b232fb5eb087bbfcc03793583ec3e1351dc7ab55240f29082ea479b7ed55aa8226667fe9da84af84f3cdaf197dffdc08de14cccb403e9183", 0x49}], 0x2)
r8 = accept$inet6(0xffffffffffffffff, &(0x7f0000000280)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000300)=0x1c)
ioctl$F2FS_IOC_ABORT_ATOMIC_WRITE(r8, 0xf505, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000bc0000000000000000030000850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x2}, 0x94)
r9 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
sendfile(r9, r9, 0x0, 0x40000f63c)

1.209002653s ago: executing program 2 (id=868):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000240)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r2}, 0x10)
r3 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000580)=@newqdisc={0x30, 0x24, 0xd0f, 0x4703d2d, 0xfffffffd, {0x60, 0x0, 0x0, r5, {0x0, 0xfff2}, {0xfff1, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}, 0x1, 0x0, 0x0, 0x24000040}, 0x44080)

1.194334496s ago: executing program 2 (id=869):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x679, @ipv4={'\x00', '\xff\xff', @remote}, 0x1}, 0x1c)
getsockopt$inet6_int(r0, 0x29, 0x1, 0x0, &(0x7f00000008c0)=0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000400)='kfree\x00'}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB], 0x48)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r1, &(0x7f0000000980)=ANY=[@ANYBLOB="7f454c4600000006010000000000000003003e000000000003000000000000004000000000000000980100000000000002000000000038000200000002000000000000600300000008000000000000000d00000000000000ed08000000000000f0ffffffffffffff0000000000000000080000000000000003000000cff5ffff800300000000000001000000000000000500000000000000ff"], 0x5b0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='sys_enter\x00', r4}, 0x10)
flistxattr(r2, 0x0, 0x0)
close(r1)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
r5 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x402)
r6 = socket$qrtr(0x2a, 0x2, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000818110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
connect$qrtr(r6, &(0x7f0000000200)={0x2a, 0xffffffff, 0xfffffffe}, 0x37)
r7 = syz_io_uring_setup(0x496, &(0x7f0000000540)={0x0, 0x465f, 0x80, 0x3, 0x284}, &(0x7f00000004c0)=<r8=>0x0, &(0x7f0000000680)=<r9=>0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r6, 0x0, 0x0})
io_uring_enter(r7, 0x3498, 0x969, 0x0, 0x0, 0x0)
dup3(r7, r5, 0x80000)
write$UHID_CREATE(0xffffffffffffffff, &(0x7f0000000900)={0x0, {'syz1\x00', 'syz1\x00', 'syz1\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120)
write$UHID_DESTROY(0xffffffffffffffff, &(0x7f0000000080), 0x4)

1.174236295s ago: executing program 0 (id=871):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)
getpid()
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000480)=@abs={0x0, 0x0, 0x8004e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r4)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008084}, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x808003, &(0x7f0000000100)={[], [{@seclabel}]}, 0x3, 0x4fc, &(0x7f0000001500)="$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")

591.217068ms ago: executing program 3 (id=879):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000012c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x1c, r2, 0xfc5, 0x0, 0x0, {{0x11}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x48000}, 0x0)

521.583735ms ago: executing program 4 (id=880):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000940)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd25, 0xa000, {0x0, 0x0, 0x0, r3, {0xe, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_ENC_IPV4_SRC={0x8, 0x1b, @local}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x0)

521.412501ms ago: executing program 3 (id=881):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000140), r0)
sendmsg$NLBL_MGMT_C_LISTDEF(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1], 0x1c}, 0x1, 0x0, 0x0, 0x4004001}, 0x40)

507.910324ms ago: executing program 3 (id=882):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x40, 0x9, 0x6, 0x801, 0x0, 0x0, {0x5}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x18, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xa010101}}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)

472.283278ms ago: executing program 3 (id=883):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000200), &(0x7f00000002c0)=0x8)

381.613816ms ago: executing program 3 (id=884):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x7}, 0x18)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000044, &(0x7f0000000240)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@nodioread_nolock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@nouid32}, {@nobh}, {@user_xattr}, {@nouid32}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000001bc0)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x58)
copy_file_range(r1, 0x0, r1, &(0x7f00000004c0)=0xae8, 0x863, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xf0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r4 = memfd_create(&(0x7f0000000040)='\x00'/12, 0x4)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3000002, 0x11, r4, 0x0)
pwrite64(r3, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
write(r2, &(0x7f0000001700)="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", 0xfffffed6)

381.356419ms ago: executing program 4 (id=885):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000006c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
lsm_get_self_attr(0x68, 0x0, &(0x7f0000000200), 0x0)

362.150473ms ago: executing program 4 (id=886):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000080)={0x84, @dev={0xac, 0x14, 0x14, 0x25}, 0x15, 0x3, 'ovf\x00', 0x21, 0x4, 0x66}, 0x2c)
r1 = socket$kcm(0xa, 0x2, 0x0)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
recvfrom$unix(r3, 0x0, 0x1d, 0x1d, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000000)={{0x84, @rand_addr=0x64010100, 0x4e24, 0x3, 'lc\x00', 0x8, 0x323b, 0x55}, {@remote, 0x4e23, 0x10000, 0x0, 0x12d5c, 0x12d5c}}, 0x44)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x804810, &(0x7f0000000a40), 0x26, 0x756, &(0x7f00000002c0)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000040)={0x84, @dev={0xac, 0x14, 0x14, 0xb}, 0x15, 0x3, 'sh\x00', 0x1, 0x4, 0x72}, 0x2c)
socket$inet_tcp(0x2, 0x1, 0x0)
sendmsg$sock(r1, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)

354.487561ms ago: executing program 3 (id=887):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x3f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
syz_usb_connect$uac1(0x4, 0x71, &(0x7f0000000580)=ANY=[], 0x0)
close_range(r1, 0xffffffffffffffff, 0x200000000000000)

229.555557ms ago: executing program 0 (id=888):
writev(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000280)='./file0\x00', 0x4, &(0x7f0000000000)={[{@dots}, {@dots}, {@dots}, {@fat=@allow_utime={'allow_utime', 0x3d, 0x401}}, {@fat=@uid}, {@nodots}]}, 0x1, 0x23a, &(0x7f0000000400)="$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")
openat$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000140)='memory.pressure\x00', 0x2, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
renameat2(0xffffffffffffff9c, &(0x7f0000000280)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)

229.333063ms ago: executing program 2 (id=889):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000001c0)={r0, <r1=>0xffffffffffffffff}, 0x4)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0xb, r1, 0x4}, 0x38)

171.045244ms ago: executing program 4 (id=890):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000020000000000002000085000000ae00000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x41, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='kfree\x00', r0}, 0x18)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmmsg$inet(r1, &(0x7f0000005b40)=[{{&(0x7f0000000000)={0x2, 0x4e20, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="2c000000000000000000000007000000441c9301ffffffff0000000000000000000000000000000000000000000000001c00000000000000000000000800", @ANYRES32=0x0], 0x50}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x3, 0xc080)

168.583767ms ago: executing program 0 (id=891):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb7"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x101301)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
ioctl$USBDEVFS_CLAIM_PORT(r0, 0x80045519, &(0x7f0000000480)=0x1)

105.629032ms ago: executing program 2 (id=892):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000140), r0)
sendmsg$NLBL_MGMT_C_LISTDEF(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1], 0x1c}, 0x1, 0x0, 0x0, 0x4004001}, 0x40)

105.525831ms ago: executing program 0 (id=893):
r0 = syz_open_dev$loop(&(0x7f0000000040), 0x8001, 0x0)
ioctl$IOC_PR_PREEMPT_ABORT(r0, 0x401870cc, 0x0)

101.679889ms ago: executing program 2 (id=894):
socket$inet_sctp(0x2, 0x5, 0x84)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
syz_emit_ethernet(0x2a, &(0x7f0000001f40)={@local, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x2, 0x1, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x8}}}}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r1, &(0x7f0000000080), 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000001300)=@gcm_256={{0x304}, "67c3f71b0f188109", "2c9e900757c2498e33fe93a0c9001c5c65f7107d0d0000000000000000000037", "ddfb00", "5a3e2c1b40238e79"}, 0x38)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000280)=@gcm_256={{0x304}, "54164ace030000f5", "faad50724acb18aba4e3bc654d684ad9c694f3e96ca4b72643dd3689727968e9", "000000f0", "ffffffff00a4e800"}, 0x38)

72.862151ms ago: executing program 4 (id=895):
syz_mount_image$vfat(&(0x7f0000000700), &(0x7f0000000040)='./bus\x00', 0x2000440, &(0x7f0000000d40)=ANY=[], 0xfe, 0x2c7, &(0x7f0000002700)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000780)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
shmctl$IPC_SET(0x0, 0x1, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="2c000000190a01"], 0x2c}}, 0x0)

21.409189ms ago: executing program 0 (id=896):
r0 = socket(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_TX_TS(r0, 0x0, 0x40)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000500)='w\xde\xa3\x05\xa3\x91\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xaek\xbd\x87W\x1d\x1b(\x8e\xf8\\2\x98\xf7P\x1b8\xcf\xf5\xdc<M\xb6\x06\x157\x80\x03\xb4\x9f\xd1\xf9\xdd\xf6&\x1d*lK\xe3\xbd\xe8\xda\xc7\x8c\xe4\xab\x8bM\xf5\x1a\x86\xc8\x9c rC\f\xee^0\xf7\xd9\xafc\x05\x91p=\xfe\x7f\xff\x9eN\xc9Zt@\x15{\x8c\x927\xfe\xc7ZEy8\x9e\x80ia[\x88\x153(\xff\xa4\xd3\xed\x12.\x9b\xb9\xc4\'\x14\xac\x14;\x02S!\x1f]bm\xe6\x0e\xb8= \xdbg/pq\x0fu\xa1\x03`\x00\xe0\x8c\xf3A\x88\xb1F\xcb\xf7O7\xfcu\xfb\xbd^\x94\xf6{\xd9k\xa13Q\x97\x03h\x12\xc8[&UX\x81\x1eK\x9c&e[R\xb4\x96\xee4~\x02\xe5\x12\x11\x98:\xfc~D(\xe3p\x03\xa7J\vP25\\t\xf0\xe7\xe2]\x88X\x91\xd5\xd8)q\x8dV\x1e\x059w\x9e`NI\x94\xbe^#\xdfE\'\x96\xd2\xc1\xce\x89\xdf\x02K\xeak\x97d\bRH\xac\x9ev\xb7\xd0\x02A\xaa\xfe\xa7\xd6\x03\x89\xb3\x96\xcb\x8b\xd7(\xf6\xb2\\6A\xe3\xae\xb3')
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x0, 0x2, 0xfffffe81, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="070000000400000008"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r3}, 0x18)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800718, &(0x7f0000000680)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x473, &(0x7f0000000bc0)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x48)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000400)={'ip6_vti0\x00', &(0x7f0000000380)={'syztnl2\x00', <r4=>0x0, 0x29, 0x2, 0x3, 0x7ff, 0x2, @private0, @remote, 0x10, 0x1, 0x2, 0x7ffffffc}})
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000640)={'syztnl0\x00', &(0x7f0000000480)={'syztnl1\x00', r4, 0x2f, 0x2, 0x3, 0x88, 0x75, @loopback, @local, 0x7807, 0x7, 0x6}})
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32=0x0], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000200)='kfree\x00', 0xffffffffffffffff, 0x0, 0x9}, 0x18)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000046c0)=@newqdisc={0x45c, 0x24, 0x4ee4e6a52ff56541, 0x8000000, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_PTAB={0x404, 0x3, [0x2, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x40000000, 0x1000, 0x2, 0x0, 0x0, 0x8000002, 0x0, 0x7e150a0b, 0x0, 0x5, 0x0, 0x100, 0x0, 0x4, 0x0, 0x100000, 0x0, 0x4, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x200000, 0x0, 0x0, 0x0, 0x10000, 0x5d2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x1007, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x3, 0x0, 0x1, 0x4, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, 0x7, 0x2, 0x9, 0x0, 0x0, 0x7, 0xfbfffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x3, 0x0, 0x0, 0x4fd, 0x2000, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x7e98263b, 0x9, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x4, 0x0, 0x0, 0x9, 0x4, 0x0, 0x0, 0x5, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0xd2d1, 0x0, 0x0, 0xb2e, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0xff, 0x1000, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x7, 0xc3f3, 0x1, 0x0, 0x7fc, 0x2000009, 0x800, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0xfffffffe, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa23, 0x0, 0xfffffffd, 0x0, 0x0, 0xd819ac9, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0xffffffff, 0x0, 0x0, 0x80000001, 0x0, 0x10, 0x20, 0x4, 0x400000b2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x1000, 0x100, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x1, 0x4, 0xfffffffe, 0x800, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x4, 0x0, 0x200000, 0x20000040, 0xfffffffe, 0x400, 0xfffffffc, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0xffffffff, 0x4, 0x0, 0x0, 0x0, 0x0, 0x20, 0xaaf0]}, @TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x2, 0x0, 0x0, 0x0, 0xc0000001}, {0x3, 0x0, 0xb, 0x0, 0x0, 0xffffffff}, 0x7, 0x10, 0x2000000}}]}}]}, 0x45c}}, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
r8 = syz_open_dev$loop(&(0x7f0000000000), 0x1, 0x185360)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000001600)={r8, 0x800, {0x2a00, 0x80010000, 0x0, 0x60, 0x6, 0x0, 0x0, 0x26, 0x1c, "fee8a2ab78fc179fd12184dd14fabeb97f6447a4b4e00d9683dda1af1ea09de2b7fb0a0100", "09e80000000000003b00000000000002000207000000000000000000000000b490952f34ee728f00000000000000000100", "90be8b1c5512406c7f00", [0x0, 0x40000000000000]}})

21.155233ms ago: executing program 2 (id=897):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x7}, 0x18)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000044, &(0x7f0000000240)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@nodioread_nolock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@nouid32}, {@nobh}, {@user_xattr}, {@nouid32}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000001bc0)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x58)
copy_file_range(r1, 0x0, r1, &(0x7f00000004c0)=0xae8, 0x863, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xf0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r4 = memfd_create(&(0x7f0000000040)='\x00'/12, 0x4)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3000002, 0x11, r4, 0x0)
pwrite64(r3, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
write(r2, &(0x7f0000001700)="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", 0xfffffed6)

16.84556ms ago: executing program 4 (id=898):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000002300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000d00)='kfree\x00', r0}, 0x18)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000340)="d8000000180081084e81f782db44b904021d0800fd007c06e8fe55a10a0015400600142603600e120800060000000201a80016000800014003e01100036010fab94dcf5c0461c1d67f6f9400e08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef409001b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed1bffec62070000cbee5de6ccd44a677575a62cef352a92954b43370e9701ee1b6ec75a526c5d5b5701cf8773", 0xd8}], 0x1}, 0x400c0)

0s ago: executing program 1 (id=899):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="160000000000000005000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mem_disconnect\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="18020000000000000000000002000000850000004100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0xe, 0x0, &(0x7f00000003c0)="131c8701feaa16bca4ac74ab821d", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.236' (ED25519) to the list of known hosts.
[   22.878336][ T6514] cgroup: Unknown subsys name 'net'
[   22.994132][ T6514] cgroup: Unknown subsys name 'cpuset'
[   22.996167][ T6514] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   23.125636][ T6514] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k SS
[   24.198436][ T6545] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   24.203411][   T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   24.204861][   T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   24.210452][   T52] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   24.213943][ T6548] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   24.218112][ T6554] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   24.219785][ T6555] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   24.220681][ T6552] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   24.221367][ T6555] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   24.221587][ T6552] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   24.221807][ T6552] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   24.222166][ T6552] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   24.222373][ T6552] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   24.223154][ T6555] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   24.226523][ T6545] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   24.234510][ T6555] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   24.237817][   T52] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   24.240868][ T6555] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   24.241532][ T6545] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   24.242404][ T6545] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   24.262191][ T6548] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   24.262865][ T6548] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   24.264304][ T6548] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   24.264717][ T6548] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   24.264918][ T6548] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   24.352288][ T6542] chnl_net:caif_netlink_parms(): no params data found
[   24.400230][ T6543] chnl_net:caif_netlink_parms(): no params data found
[   24.426447][ T6542] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.427942][ T6542] bridge0: port 1(bridge_slave_0) entered disabled state
[   24.429213][ T6542] bridge_slave_0: entered allmulticast mode
[   24.430639][ T6542] bridge_slave_0: entered promiscuous mode
[   24.434157][ T6542] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.434200][ T6542] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.434273][ T6542] bridge_slave_1: entered allmulticast mode
[   24.434697][ T6542] bridge_slave_1: entered promiscuous mode
[   24.460251][ T6549] chnl_net:caif_netlink_parms(): no params data found
[   24.469195][ T6542] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   24.484842][ T6542] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   24.500720][ T6543] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.500803][ T6543] bridge0: port 1(bridge_slave_0) entered disabled state
[   24.500866][ T6543] bridge_slave_0: entered allmulticast mode
[   24.501317][ T6543] bridge_slave_0: entered promiscuous mode
[   24.502028][ T6543] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.502043][ T6543] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.502085][ T6543] bridge_slave_1: entered allmulticast mode
[   24.502531][ T6543] bridge_slave_1: entered promiscuous mode
[   24.518951][ T6550] chnl_net:caif_netlink_parms(): no params data found
[   24.522886][ T6542] team0: Port device team_slave_0 added
[   24.525114][ T6542] team0: Port device team_slave_1 added
[   24.537369][ T6543] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   24.547359][ T6549] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.548617][ T6549] bridge0: port 1(bridge_slave_0) entered disabled state
[   24.549936][ T6549] bridge_slave_0: entered allmulticast mode
[   24.551477][ T6549] bridge_slave_0: entered promiscuous mode
[   24.555341][ T6549] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.556690][ T6549] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.557955][ T6549] bridge_slave_1: entered allmulticast mode
[   24.559423][ T6549] bridge_slave_1: entered promiscuous mode
[   24.561657][ T6543] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   24.570848][ T6543] team0: Port device team_slave_0 added
[   24.571535][ T6543] team0: Port device team_slave_1 added
[   24.575794][ T6542] batman_adv: batadv0: Adding interface: batadv_slave_0
[   24.576961][ T6542] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.576997][ T6542] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   24.587952][ T6556] chnl_net:caif_netlink_parms(): no params data found
[   24.594865][ T6543] batman_adv: batadv0: Adding interface: batadv_slave_0
[   24.594889][ T6543] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.594905][ T6543] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   24.595419][ T6543] batman_adv: batadv0: Adding interface: batadv_slave_1
[   24.595425][ T6543] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.595437][ T6543] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   24.609965][ T6542] batman_adv: batadv0: Adding interface: batadv_slave_1
[   24.609986][ T6542] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.610000][ T6542] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   24.634255][ T6543] hsr_slave_0: entered promiscuous mode
[   24.634632][ T6543] hsr_slave_1: entered promiscuous mode
[   24.637601][ T6549] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   24.656870][ T6542] hsr_slave_0: entered promiscuous mode
[   24.657166][ T6542] hsr_slave_1: entered promiscuous mode
[   24.657368][ T6542] debugfs: 'hsr0' already exists in 'hsr'
[   24.657413][ T6542] Cannot create hsr debugfs directory
[   24.658468][ T6549] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   24.662154][ T6550] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.662793][ T6550] bridge0: port 1(bridge_slave_0) entered disabled state
[   24.662906][ T6550] bridge_slave_0: entered allmulticast mode
[   24.663730][ T6550] bridge_slave_0: entered promiscuous mode
[   24.665059][ T6550] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.665075][ T6550] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.665121][ T6550] bridge_slave_1: entered allmulticast mode
[   24.665577][ T6550] bridge_slave_1: entered promiscuous mode
[   24.697042][ T6549] team0: Port device team_slave_0 added
[   24.703210][ T6550] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   24.704267][ T6550] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   24.704377][ T6556] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.704432][ T6556] bridge0: port 1(bridge_slave_0) entered disabled state
[   24.704485][ T6556] bridge_slave_0: entered allmulticast mode
[   24.705044][ T6556] bridge_slave_0: entered promiscuous mode
[   24.706130][ T6556] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.706147][ T6556] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.706196][ T6556] bridge_slave_1: entered allmulticast mode
[   24.706669][ T6556] bridge_slave_1: entered promiscuous mode
[   24.714801][ T6549] team0: Port device team_slave_1 added
[   24.738375][ T6550] team0: Port device team_slave_0 added
[   24.740748][ T6556] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   24.747634][ T6549] batman_adv: batadv0: Adding interface: batadv_slave_0
[   24.747656][ T6549] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.747672][ T6549] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   24.748499][ T6549] batman_adv: batadv0: Adding interface: batadv_slave_1
[   24.748508][ T6549] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.748522][ T6549] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   24.757011][ T6550] team0: Port device team_slave_1 added
[   24.764099][ T6556] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   24.782117][ T6550] batman_adv: batadv0: Adding interface: batadv_slave_0
[   24.782145][ T6550] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.782174][ T6550] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   24.791630][ T6556] team0: Port device team_slave_0 added
[   24.799058][ T6549] hsr_slave_0: entered promiscuous mode
[   24.800581][ T6549] hsr_slave_1: entered promiscuous mode
[   24.802029][ T6549] debugfs: 'hsr0' already exists in 'hsr'
[   24.803075][ T6549] Cannot create hsr debugfs directory
[   24.807325][ T6550] batman_adv: batadv0: Adding interface: batadv_slave_1
[   24.808477][ T6550] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.812769][ T6550] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   24.820382][ T6556] team0: Port device team_slave_1 added
[   24.855765][ T6556] batman_adv: batadv0: Adding interface: batadv_slave_0
[   24.857018][ T6556] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.861571][ T6556] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   24.866296][ T6550] hsr_slave_0: entered promiscuous mode
[   24.866586][ T6550] hsr_slave_1: entered promiscuous mode
[   24.866749][ T6550] debugfs: 'hsr0' already exists in 'hsr'
[   24.866759][ T6550] Cannot create hsr debugfs directory
[   24.876923][ T6556] batman_adv: batadv0: Adding interface: batadv_slave_1
[   24.877551][ T6556] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.877575][ T6556] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   24.916715][ T6556] hsr_slave_0: entered promiscuous mode
[   24.918043][ T6556] hsr_slave_1: entered promiscuous mode
[   24.919170][ T6556] debugfs: 'hsr0' already exists in 'hsr'
[   24.920063][ T6556] Cannot create hsr debugfs directory
[   24.933121][ T6543] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   24.939324][ T6543] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   24.941839][ T6543] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   24.946044][ T6543] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   24.995454][ T6542] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   25.003142][ T6542] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   25.005907][ T6542] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   25.008038][ T6542] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   25.012232][ T6543] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.012286][ T6543] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.012476][ T6543] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.012517][ T6543] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.035123][ T6542] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.035168][ T6542] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.035261][ T6542] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.035297][ T6542] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.048652][ T6549] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   25.052026][ T6549] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   25.058772][ T6549] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   25.061028][ T6549] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   25.072521][ T6543] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.089582][ T6543] 8021q: adding VLAN 0 to HW filter on device team0
[   25.092207][  T624] bridge0: port 1(bridge_slave_0) entered disabled state
[   25.093952][  T624] bridge0: port 2(bridge_slave_1) entered disabled state
[   25.096525][  T624] bridge0: port 1(bridge_slave_0) entered disabled state
[   25.097991][  T624] bridge0: port 2(bridge_slave_1) entered disabled state
[   25.120967][  T624] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.121018][  T624] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.121829][  T624] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.121854][  T624] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.126601][ T6550] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   25.129274][ T6550] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   25.144830][ T6550] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   25.147521][ T6550] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   25.156813][ T6542] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.170547][ T6549] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.190676][ T6549] 8021q: adding VLAN 0 to HW filter on device team0
[   25.202165][ T6542] 8021q: adding VLAN 0 to HW filter on device team0
[   25.212392][ T6542] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   25.212443][ T6542] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   25.219291][ T6556] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   25.226390][   T41] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.226426][   T41] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.226997][   T41] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.227013][   T41] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.229075][   T41] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.229096][   T41] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.229378][   T41] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.229392][   T41] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.241581][ T6556] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   25.245708][ T6556] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   25.261222][ T6549] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   25.261272][ T6549] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   25.268738][ T6556] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   25.283779][ T6550] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.310083][ T6550] 8021q: adding VLAN 0 to HW filter on device team0
[   25.326085][ T6543] 8021q: adding VLAN 0 to HW filter on device batadv0
[   25.337952][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.337992][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.338604][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.338621][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.355217][ T6556] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.357868][ T6549] 8021q: adding VLAN 0 to HW filter on device batadv0
[   25.367713][ T6542] 8021q: adding VLAN 0 to HW filter on device batadv0
[   25.374187][ T6556] 8021q: adding VLAN 0 to HW filter on device team0
[   25.396073][ T6549] veth0_vlan: entered promiscuous mode
[   25.399786][ T6543] veth0_vlan: entered promiscuous mode
[   25.410935][ T6556] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   25.410965][ T6556] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   25.418604][ T6549] veth1_vlan: entered promiscuous mode
[   25.421637][ T6550] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   25.423240][ T6550] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   25.427460][ T6543] veth1_vlan: entered promiscuous mode
[   25.430288][ T4456] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.430327][ T4456] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.433743][ T4456] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.433777][ T4456] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.442559][ T6542] veth0_vlan: entered promiscuous mode
[   25.459573][ T6549] veth0_macvtap: entered promiscuous mode
[   25.461069][ T6549] veth1_macvtap: entered promiscuous mode
[   25.469154][ T6543] veth0_macvtap: entered promiscuous mode
[   25.472304][ T6542] veth1_vlan: entered promiscuous mode
[   25.485091][ T6543] veth1_macvtap: entered promiscuous mode
[   25.491092][ T6542] veth0_macvtap: entered promiscuous mode
[   25.501599][ T6543] batman_adv: batadv0: Interface activated: batadv_slave_0
[   25.509882][ T6556] 8021q: adding VLAN 0 to HW filter on device batadv0
[   25.513946][ T6549] batman_adv: batadv0: Interface activated: batadv_slave_0
[   25.514659][ T6542] veth1_macvtap: entered promiscuous mode
[   25.516194][ T6543] batman_adv: batadv0: Interface activated: batadv_slave_1
[   25.521031][ T4456] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   25.521090][ T4456] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   25.521113][ T4456] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   25.521130][ T4456] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   25.537195][ T6542] batman_adv: batadv0: Interface activated: batadv_slave_0
[   25.550082][ T6549] batman_adv: batadv0: Interface activated: batadv_slave_1
[   25.570396][  T624] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   25.570662][  T624] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   25.570684][  T624] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   25.570699][  T624] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   25.575792][ T6550] 8021q: adding VLAN 0 to HW filter on device batadv0
[   25.585575][ T6542] batman_adv: batadv0: Interface activated: batadv_slave_1
[   25.604327][ T4932] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   25.604385][ T4932] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   25.604403][ T4932] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   25.604416][ T4932] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   25.625300][  T624] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   25.625334][  T624] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   25.628229][ T6550] veth0_vlan: entered promiscuous mode
[   25.631575][ T6550] veth1_vlan: entered promiscuous mode
[   25.646940][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   25.646975][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   25.667452][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   25.667482][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   25.681180][ T6556] veth0_vlan: entered promiscuous mode
[   25.685689][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   25.685721][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   25.691041][ T6556] veth1_vlan: entered promiscuous mode
[   25.711847][ T4456] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   25.711877][ T4456] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   25.718100][ T6550] veth0_macvtap: entered promiscuous mode
[   25.723992][ T6549] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   25.731889][ T6550] veth1_macvtap: entered promiscuous mode
[   25.740199][ T6550] batman_adv: batadv0: Interface activated: batadv_slave_0
[   25.752062][ T6556] veth0_macvtap: entered promiscuous mode
[   25.755316][ T6550] batman_adv: batadv0: Interface activated: batadv_slave_1
[   25.759381][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   25.759413][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   25.766617][ T6556] veth1_macvtap: entered promiscuous mode
[   25.771665][ T4456] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   25.771732][ T4456] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   25.771752][ T4456] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   25.771766][ T4456] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   25.815356][ T4456] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   25.815385][ T4456] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   25.822325][ T6556] batman_adv: batadv0: Interface activated: batadv_slave_0
[   25.829693][ T6659] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1'.
[   25.848334][ T1629] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   25.848369][ T1629] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   25.853513][ T6556] batman_adv: batadv0: Interface activated: batadv_slave_1
[   25.869302][ T4456] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   25.870819][ T4456] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   25.881817][ T4456] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   25.881885][ T4456] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   25.974076][   T31] audit: type=1326 audit(25.930:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6672 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   25.974133][   T31] audit: type=1326 audit(25.930:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6672 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   25.981126][ T4456] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   25.981164][ T4456] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   25.986432][   T31] audit: type=1326 audit(25.950:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6672 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   25.986473][   T31] audit: type=1326 audit(25.950:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6672 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   25.986503][   T31] audit: type=1326 audit(25.950:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6672 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   25.986521][   T31] audit: type=1326 audit(25.950:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6672 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   25.986538][   T31] audit: type=1326 audit(25.950:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6672 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   25.986553][   T31] audit: type=1326 audit(25.950:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6672 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   25.986568][   T31] audit: type=1326 audit(25.950:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6672 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   25.986583][   T31] audit: type=1326 audit(25.950:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6672 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   26.016640][ T4456] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   26.016655][ T4456] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   26.027250][ T6679] netlink: 34 bytes leftover after parsing attributes in process `syz.3.12'.
[   26.041225][ T6681] loop2: detected capacity change from 0 to 164
[   26.051783][ T6681] Unable to read rock-ridge attributes
[   26.058763][ T6681] Unable to read rock-ridge attributes
[   26.121351][ T6691] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5'.
[   26.121390][ T6691] netlink: 348 bytes leftover after parsing attributes in process `syz.4.5'.
[   26.121414][ T6691] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5'.
[   26.121424][ T6691] netlink: 348 bytes leftover after parsing attributes in process `syz.4.5'.
[   26.121466][ T6691] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5'.
[   26.147599][ T6694] loop1: detected capacity change from 0 to 512
[   26.172066][ T6694] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   26.176166][ T6694] EXT4-fs (loop1): orphan cleanup on readonly fs
[   26.176863][ T6694] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.18: Failed to acquire dquot type 1
[   26.188286][ T6694] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.18: bg 0: block 40: padding at end of block bitmap is not set
[   26.191689][ T6694] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   26.195223][ T6694] EXT4-fs (loop1): 1 truncate cleaned up
[   26.198418][ T6701] netlink: 12 bytes leftover after parsing attributes in process `syz.4.21'.
[   26.229017][ T6704] netlink: 'syz.2.19': attribute type 6 has an invalid length.
[   26.236112][ T6706] veth0: entered promiscuous mode
[   26.239924][ T6705] veth0: left promiscuous mode
[   26.254934][ T6694] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   26.263426][ T6545] Bluetooth: hci1: command tx timeout
[   26.263427][ T6548] Bluetooth: hci2: command tx timeout
[   26.273836][ T6548] Bluetooth: hci0: command tx timeout
[   26.274114][ T6545] Bluetooth: hci3: command tx timeout
[   26.274274][ T6608] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[   26.291051][ T6543] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   26.343272][ T6545] Bluetooth: hci4: command tx timeout
[   26.431459][ T6608] usb 1-1: unable to read config index 0 descriptor/start: -71
[   26.431504][ T6608] usb 1-1: can't read configurations, error -71
[   26.534263][ T6723] netlink: 4 bytes leftover after parsing attributes in process `syz.1.31'.
[   26.634983][ T6727] 9pnet: Could not find request transport: fd<r=
[   26.714407][ T6736] syz.4.37 uses obsolete (PF_INET,SOCK_PACKET)
[   26.754791][ T6738] loop1: detected capacity change from 0 to 764
[   26.781587][ T6740] loop3: detected capacity change from 0 to 512
[   26.790072][ T6740] ext4: Unknown parameter 'seclabel'
[   26.943546][ T6746] netlink: 64 bytes leftover after parsing attributes in process `syz.3.42'.
[   27.026786][ T6758] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   27.130382][ T4718] Bluetooth: hci5: Frame reassembly failed (-84)
[   27.508629][ T6795] loop2: detected capacity change from 0 to 2048
[   27.532577][ T6795] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   27.578161][ T6801] loop3: detected capacity change from 0 to 128
[   27.582161][ T6801] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   27.592238][ T6801] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   27.611896][ T4456] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   27.737865][ T6814] loop3: detected capacity change from 0 to 1024
[   27.738218][ T6814] =======================================================
[   27.738218][ T6814] WARNING: The mand mount option has been deprecated and
[   27.738218][ T6814]          and is ignored by this kernel. Remove the mand
[   27.738218][ T6814]          option from the mount to silence this warning.
[   27.738218][ T6814] =======================================================
[   27.757938][ T6814] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   27.762437][ T6814] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: block 3: comm syz.3.68: lblock 3 mapped to illegal pblock 3 (length 3)
[   27.763868][ T6814] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[   27.763885][ T6814] EXT4-fs (loop3): This should not happen!! Data will be lost
[   27.763885][ T6814] 
[   27.774252][ T4456] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   27.774808][ T4456] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 36 with error 28
[   27.774819][ T4456] EXT4-fs (loop3): This should not happen!! Data will be lost
[   27.774819][ T4456] 
[   27.774825][ T4456] EXT4-fs (loop3): Total free blocks count 0
[   27.774830][ T4456] EXT4-fs (loop3): Free/Dirty block details
[   27.774837][ T4456] EXT4-fs (loop3): free_blocks=4293918720
[   27.774846][ T4456] EXT4-fs (loop3): dirty_blocks=48
[   27.774850][ T4456] EXT4-fs (loop3): Block reservation details
[   27.870896][ T6820] loop0: detected capacity change from 0 to 256
[   28.106302][ T6832] IPv6: Can't replace route, no match found
[   28.219424][ T6843] netlink: 'syz.3.81': attribute type 10 has an invalid length.
[   28.227639][ T6843] veth1_macvtap: left promiscuous mode
[   28.342983][ T6555] Bluetooth: hci3: command tx timeout
[   28.343029][ T6555] Bluetooth: hci0: command tx timeout
[   28.343056][ T6555] Bluetooth: hci1: command tx timeout
[   28.343135][ T6548] Bluetooth: hci2: command tx timeout
[   28.361420][ T6550] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   28.423447][   T52] Bluetooth: hci4: command tx timeout
[   29.143213][ T6545] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   29.231474][ T6866] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   29.231549][ T6866] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   29.237774][ T6866] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   29.239844][ T6866] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   29.239892][ T6866] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   29.240885][ T6895] netlink: 'syz.0.105': attribute type 1 has an invalid length.
[   29.248437][ T6866] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   29.249918][ T6866] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   29.250100][ T6866] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   29.254150][ T6866] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   29.255523][ T6866] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   29.256943][ T6866] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   29.261999][ T6866] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   29.264572][ T6866] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[   29.264607][ T6866] Bluetooth: hci4: Opcode 0x0406 failed: -4
[   29.278367][ T6866] Bluetooth: hci4: Opcode 0x0406 failed: -4
[   29.319448][ T6904] loop0: detected capacity change from 0 to 256
[   29.320002][ T6901] vhci_hcd: default hub control req: 030c v0017 i0006 l0
[   29.346224][ T6904] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   29.347095][ T6904] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   29.807242][ T6933] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   29.807291][ T6933] vhci_hcd: invalid port number 96
[   29.807313][ T6933] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   29.870683][ T6940] C: renamed from team_slave_0 (while UP)
[   29.921782][ T6948] loop3: detected capacity change from 0 to 512
[   29.939237][ T6953] IPVS: Error connecting to the multicast addr
[   29.950407][ T6948] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   30.104587][ T6967] loop2: detected capacity change from 0 to 1024
[   30.105556][ T6967] ext4: Unknown parameter 'seclabel'
[   30.154374][ T6973] loop0: detected capacity change from 0 to 4096
[   30.156851][ T6973] EXT4-fs: Ignoring removed nomblk_io_submit option
[   30.166342][ T6973] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   30.187376][ T6549] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   30.238342][ T6984] loop2: detected capacity change from 0 to 512
[   30.251108][ T6984] EXT4-fs warning (device loop2): ext4_xattr_inode_get:556: inode #11: comm syz.2.143: EA inode hash validation failed
[   30.251291][ T6984] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   30.251467][ T6984] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #15: comm syz.2.143: corrupted inode contents
[   30.256938][ T6984] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #15: comm syz.2.143: mark_inode_dirty error
[   30.257568][ T6984] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #15: comm syz.2.143: corrupted inode contents
[   30.257695][ T6984] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2991: inode #15: comm syz.2.143: mark_inode_dirty error
[   30.258980][ T6984] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2994: inode #15: comm syz.2.143: mark inode dirty (error -117)
[   30.260319][ T6984] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[   30.260414][ T6984] EXT4-fs (loop2): 1 orphan inode deleted
[   30.261767][ T6984] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   30.295274][ T6989] mmap: syz.0.144 (6989) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   30.298922][ T6550] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   30.411367][ T7005] veth0: entered promiscuous mode
[   30.414044][ T7005] veth0: left promiscuous mode
[   30.414565][ T7003] loop4: detected capacity change from 0 to 256
[   30.445850][ T7003] syz.4.151: attempt to access beyond end of device
[   30.445850][ T7003] loop4: rw=2049, sector=256, nr_sectors = 100 limit=256
[   30.502889][   T52] Bluetooth: hci0: command 0x0419 tx timeout
[   30.610563][ T7023] syzkaller1: entered promiscuous mode
[   30.611670][ T7023] syzkaller1: entered allmulticast mode
[   30.631676][ T7027] loop0: detected capacity change from 0 to 256
[   30.768521][ T6542] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   30.847023][ T7045] loop3: detected capacity change from 0 to 1024
[   30.847428][ T7045] EXT4-fs: Ignoring removed nobh option
[   30.860119][ T7045] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   30.932108][ T6542] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   30.960710][ T7054] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   30.964244][ T7054] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   30.985057][ T7054] usb usb8: usbfs: process 7054 (syz.4.174) did not claim interface 0 before use
[   31.143841][ T7074] loop0: detected capacity change from 0 to 1024
[   31.144245][ T7074] ext4: Unknown parameter 'defcontext'
[   31.149879][ T7074] __nla_validate_parse: 7 callbacks suppressed
[   31.150371][ T7074] netlink: 68 bytes leftover after parsing attributes in process `syz.0.182'.
[   31.176308][ T7076] Illegal XDP return value 4294967274 on prog  (id 8) dev syz_tun, expect packet loss!
[   31.304292][ T6545] Bluetooth: hci3: command 0x0419 tx timeout
[   31.304311][ T6555] Bluetooth: hci1: command 0x0419 tx timeout
[   31.304377][ T6548] Bluetooth: hci2: command 0x0419 tx timeout
[   31.305987][   T52] Bluetooth: hci4: command 0x0419 tx timeout
[   31.400952][ T7091] loop2: detected capacity change from 0 to 128
[   31.403807][ T7091] FAT-fs (loop2): Directory bread(block 162) failed
[   31.403840][ T7091] FAT-fs (loop2): Directory bread(block 163) failed
[   31.403852][ T7091] FAT-fs (loop2): Directory bread(block 164) failed
[   31.403863][ T7091] FAT-fs (loop2): Directory bread(block 165) failed
[   31.403872][ T7091] FAT-fs (loop2): Directory bread(block 166) failed
[   31.403882][ T7091] FAT-fs (loop2): Directory bread(block 167) failed
[   31.403892][ T7091] FAT-fs (loop2): Directory bread(block 168) failed
[   31.403901][ T7091] FAT-fs (loop2): Directory bread(block 169) failed
[   31.409194][ T7091] FAT-fs (loop2): Directory bread(block 162) failed
[   31.409210][ T7091] FAT-fs (loop2): Directory bread(block 163) failed
[   31.456734][ T7095] loop2: detected capacity change from 0 to 1024
[   31.457103][ T7095] EXT4-fs: Ignoring removed nobh option
[   31.457128][ T7095] ext4: Unknown parameter 'seclabel'
[   31.484663][ T7097] netlink: 'syz.2.192': attribute type 21 has an invalid length.
[   31.529726][ T7103] loop4: detected capacity change from 0 to 128
[   31.536906][ T7103] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   31.552051][ T6556] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   32.623288][   T52] Bluetooth: hci0: command 0x0419 tx timeout
[   32.858825][ T7128] netlink: 'syz.2.203': attribute type 1 has an invalid length.
[   32.858860][ T7128] netlink: 5452 bytes leftover after parsing attributes in process `syz.2.203'.
[   32.909511][ T7132] netlink: 'syz.2.205': attribute type 10 has an invalid length.
[   32.913534][ T7132] team0: Port device dummy0 added
[   32.918093][ T7132] netlink: 'syz.2.205': attribute type 10 has an invalid length.
[   32.918531][ T7132] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   32.969290][ T7130] loop3: detected capacity change from 0 to 164
[   33.008164][ T7132] team0: Failed to send options change via netlink (err -105)
[   33.008570][ T7132] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   33.008838][ T7132] team0: Port device dummy0 removed
[   33.010756][ T7132] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   33.076886][ T7141] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.077408][ T7141] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.080496][ T7141] bridge0: entered allmulticast mode
[   33.101991][ T7141] bridge_slave_1: left allmulticast mode
[   33.102202][ T7141] bridge_slave_1: left promiscuous mode
[   33.102650][ T7141] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.131745][ T7150] loop3: detected capacity change from 0 to 512
[   33.131813][ T7141] bridge_slave_0: left allmulticast mode
[   33.131833][ T7141] bridge_slave_0: left promiscuous mode
[   33.131927][ T7141] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.156887][ T7150] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.212: bad orphan inode 11862016
[   33.157506][ T7150] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   33.239208][ T7158] loop0: detected capacity change from 0 to 512
[   33.242341][ T7158] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   33.242388][ T7158] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   33.253591][ T7158] EXT4-fs (loop0): 1 truncate cleaned up
[   33.255726][ T7158] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.274361][ T7150] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #19: comm syz.3.212: corrupted inode contents
[   33.278262][ T7150] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #19: comm syz.3.212: mark_inode_dirty error
[   33.281048][ T7150] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #19: comm syz.3.212: corrupted inode contents
[   33.281263][ T7150] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #19: comm syz.3.212: mark_inode_dirty error
[   33.281395][ T7150] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #19: comm syz.3.212: mark inode dirty (error -117)
[   33.281511][ T7150] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[   33.285769][ T6549] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.334784][ T6542] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   33.338927][ T7168] loop0: detected capacity change from 0 to 512
[   33.353537][ T7168] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   33.358807][ T7168] EXT4-fs (loop0): 1 truncate cleaned up
[   33.359297][ T7168] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.383094][   T52] Bluetooth: hci2: command 0x0419 tx timeout
[   33.384298][ T6548] Bluetooth: hci1: command 0x0419 tx timeout
[   33.384337][ T6548] Bluetooth: hci4: command 0x0419 tx timeout
[   33.384371][ T6548] Bluetooth: hci3: command 0x0419 tx timeout
[   33.415703][ T7173] ALSA: seq fatal error: cannot create timer (-19)
[   33.428853][ T6549] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.487880][ T7179] loop0: detected capacity change from 0 to 2048
[   33.490118][ T7179] EXT4-fs: quotafile must be on filesystem root
[   33.544019][   T31] kauditd_printk_skb: 102 callbacks suppressed
[   33.544066][   T31] audit: type=1326 audit(33.520:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7184 comm="syz.2.226" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   33.544424][   T31] audit: type=1326 audit(33.520:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7184 comm="syz.2.226" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   33.544473][   T31] audit: type=1326 audit(33.520:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7184 comm="syz.2.226" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   33.544506][   T31] audit: type=1326 audit(33.520:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7184 comm="syz.2.226" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   33.544527][   T31] audit: type=1326 audit(33.520:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7184 comm="syz.2.226" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   33.544547][   T31] audit: type=1326 audit(33.520:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7184 comm="syz.2.226" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=234 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   33.544566][   T31] audit: type=1326 audit(33.520:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7184 comm="syz.2.226" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   33.562223][ T7188] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   33.624879][ T7193] loop4: detected capacity change from 0 to 256
[   33.736566][ T7196] team0: No ports can be present during mode change
[   33.737318][ T7196] vlan0: entered promiscuous mode
[   33.747341][ T7196] team0: Port device vlan0 added
[   33.759494][ T7196] tipc: Started in network mode
[   33.759541][ T7196] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[   33.759623][ T7196] tipc: Enabled bearer <eth:team0>, priority 0
[   33.760584][ T7199] rdma_op 000000002cc030e9 conn xmit_rdma 0000000000000000
[   33.908618][ T7214] IPv6: Can't replace route, no match found
[   33.972026][ T7221] capability: warning: `syz.2.243' uses 32-bit capabilities (legacy support in use)
[   34.069439][   T31] audit: type=1326 audit(34.040:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7228 comm="syz.2.246" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   34.069483][   T31] audit: type=1326 audit(34.040:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7228 comm="syz.2.246" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   34.073372][   T31] audit: type=1326 audit(34.040:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7228 comm="syz.2.246" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff97d5b3a8 code=0x7ffc0000
[   34.274599][ T7246] loop2: detected capacity change from 0 to 128
[   34.351354][ T7250] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   34.440294][ T7250] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   34.491249][ T7250] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   34.545462][ T7250] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   34.636236][  T624] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   34.638790][  T624] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   34.642564][  T624] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   34.647202][ T7264] loop0: detected capacity change from 0 to 1024
[   34.649793][ T7264] ext4: Unknown parameter 'rootcontext'
[   34.653086][   T12] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   34.715424][ T7270] capability: warning: `syz.2.264' uses deprecated v2 capabilities in a way that may be insecure
[   34.746509][ T7274] loop0: detected capacity change from 0 to 128
[   34.767952][ T7274] syz.0.265: attempt to access beyond end of device
[   34.767952][ T7274] loop0: rw=2049, sector=154, nr_sectors = 8 limit=128
[   34.773980][   T24] tipc: Node number set to 11578026
[   34.775133][ T7274] syz.0.265: attempt to access beyond end of device
[   34.775133][ T7274] loop0: rw=2049, sector=160, nr_sectors = 2 limit=128
[   34.777376][ T7274] Buffer I/O error on dev loop0, logical block 80, lost async page write
[   34.779071][ T7274] syz.0.265: attempt to access beyond end of device
[   34.779071][ T7274] loop0: rw=2049, sector=162, nr_sectors = 8 limit=128
[   34.782034][ T7274] syz.0.265: attempt to access beyond end of device
[   34.782034][ T7274] loop0: rw=2049, sector=168, nr_sectors = 2 limit=128
[   34.784824][ T7274] Buffer I/O error on dev loop0, logical block 84, lost async page write
[   34.788190][ T7274] syz.0.265: attempt to access beyond end of device
[   34.788190][ T7274] loop0: rw=2049, sector=186, nr_sectors = 8 limit=128
[   34.791980][ T7274] syz.0.265: attempt to access beyond end of device
[   34.791980][ T7274] loop0: rw=2049, sector=192, nr_sectors = 2 limit=128
[   34.793244][ T7273] netlink: 4 bytes leftover after parsing attributes in process `syz.2.266'.
[   34.799081][ T7274] Buffer I/O error on dev loop0, logical block 96, lost async page write
[   34.799406][ T7274] syz.0.265: attempt to access beyond end of device
[   34.799406][ T7274] loop0: rw=2049, sector=194, nr_sectors = 8 limit=128
[   34.799656][ T7274] syz.0.265: attempt to access beyond end of device
[   34.799656][ T7274] loop0: rw=2049, sector=200, nr_sectors = 2 limit=128
[   34.799671][ T7274] Buffer I/O error on dev loop0, logical block 100, lost async page write
[   34.803873][ T7274] syz.0.265: attempt to access beyond end of device
[   34.803873][ T7274] loop0: rw=2049, sector=218, nr_sectors = 8 limit=128
[   34.804146][ T7274] Buffer I/O error on dev loop0, logical block 112, lost async page write
[   34.807138][ T7274] Buffer I/O error on dev loop0, logical block 116, lost async page write
[   34.811774][ T7222] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[   34.835014][ T7274] Buffer I/O error on dev loop0, logical block 77, lost async page write
[   34.835080][ T7274] Buffer I/O error on dev loop0, logical block 78, lost async page write
[   34.835108][ T7274] Buffer I/O error on dev loop0, logical block 79, lost async page write
[   34.835130][ T7274] Buffer I/O error on dev loop0, logical block 80, lost async page write
[   34.940084][ T7293] loop3: detected capacity change from 0 to 1024
[   34.940469][ T7293] EXT4-fs: Ignoring removed orlov option
[   34.954603][ T7293] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   34.997092][ T6542] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.048103][ T6593] hid-generic 0000:0000:10003.0001: unknown main item tag 0x0
[   35.048149][ T6593] hid-generic 0000:0000:10003.0001: unknown main item tag 0x0
[   35.049076][ T6593] hid-generic 0000:0000:10003.0001: unknown main item tag 0x0
[   35.049596][ T6593] hid-generic 0000:0000:10003.0001: unknown main item tag 0x0
[   35.049619][ T6593] hid-generic 0000:0000:10003.0001: unknown main item tag 0x0
[   35.049635][ T6593] hid-generic 0000:0000:10003.0001: unknown main item tag 0x0
[   35.049648][ T6593] hid-generic 0000:0000:10003.0001: unknown main item tag 0x0
[   35.049660][ T6593] hid-generic 0000:0000:10003.0001: unknown main item tag 0x0
[   35.049671][ T6593] hid-generic 0000:0000:10003.0001: unknown main item tag 0x0
[   35.049681][ T6593] hid-generic 0000:0000:10003.0001: unknown main item tag 0x0
[   35.061988][ T6593] hid-generic 0000:0000:10003.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[   35.131036][ T7305] fido_id[7305]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   35.299399][ T7322] netlink: 24 bytes leftover after parsing attributes in process `syz.1.286'.
[   35.389754][ T7326] loop3: detected capacity change from 0 to 128
[   35.398456][ T7326] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   35.462835][ T6545] Bluetooth: hci2: command 0x0419 tx timeout
[   35.462881][ T6545] Bluetooth: hci3: command 0x0419 tx timeout
[   35.462914][ T6545] Bluetooth: hci4: command 0x0419 tx timeout
[   35.462932][ T6545] Bluetooth: hci1: command 0x0419 tx timeout
[   35.510825][ T7337] loop4: detected capacity change from 0 to 512
[   35.524747][ T7337] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.292: casefold flag without casefold feature
[   35.524924][ T7337] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.292: couldn't read orphan inode 15 (err -117)
[   35.525434][ T7337] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   35.610127][ T6556] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.723436][ T7359] loop1: detected capacity change from 0 to 512
[   35.726913][ T7358] netlink: 8 bytes leftover after parsing attributes in process `syz.4.296'.
[   35.731332][ T7359] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   35.734699][ T7359] EXT4-fs (loop1): 1 truncate cleaned up
[   35.736490][ T7359] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   35.779122][ T6543] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.787970][ T7364] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[   35.834873][ T7369] netlink: 'syz.1.298': attribute type 22 has an invalid length.
[   36.147916][ T7403] netlink: 'syz.0.304': attribute type 4 has an invalid length.
[   37.267937][ T7508] xt_CT: You must specify a L4 protocol and not use inversions on it
[   37.434522][ T7515] loop0: detected capacity change from 0 to 164
[   37.542823][ T6545] Bluetooth: hci4: command 0x0419 tx timeout
[   37.542868][ T6545] Bluetooth: hci3: command 0x0419 tx timeout
[   37.542894][ T6545] Bluetooth: hci2: command 0x0419 tx timeout
[   37.544789][   T52] Bluetooth: hci1: command 0x0419 tx timeout
[   37.585899][ T7526] hub 2-0:1.0: USB hub found
[   37.587075][ T7526] hub 2-0:1.0: 8 ports detected
[   37.780941][ T6542] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   37.913141][ T7544] loop3: detected capacity change from 0 to 512
[   37.916422][ T7544] EXT4-fs: Ignoring removed nobh option
[   37.935977][ T7544] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm ��: corrupted inode contents
[   37.946031][ T7544] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #3: comm ��: mark_inode_dirty error
[   37.950666][ T7544] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm ��: corrupted inode contents
[   37.953056][ T7544] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #3: comm ��: mark_inode_dirty error
[   37.956347][ T7544] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm ��: Failed to acquire dquot type 0
[   37.965420][ T7544] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm ��: corrupted inode contents
[   37.968786][ T7544] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #16: comm ��: mark_inode_dirty error
[   37.970711][ T7544] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm ��: corrupted inode contents
[   37.972761][ T7544] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm ��: mark_inode_dirty error
[   37.974742][ T7544] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm ��: corrupted inode contents
[   37.977611][ T7544] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   37.979333][ T7544] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm ��: corrupted inode contents
[   37.985617][ T7544] EXT4-fs error (device loop3): ext4_truncate:4666: inode #16: comm ��: mark_inode_dirty error
[   37.985896][ T7544] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   37.989551][ T7544] EXT4-fs (loop3): 1 truncate cleaned up
[   37.991367][ T7544] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.010557][ T6542] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.177723][ T7562] netlink: 14 bytes leftover after parsing attributes in process `syz.0.337'.
[   38.594764][ T7562] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   38.635693][ T7562] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   38.675152][ T7562] bond0 (unregistering): Released all slaves
[   38.708366][ T7580] netlink: 20 bytes leftover after parsing attributes in process `syz.3.344'.
[   38.797358][ T7364] Set syz1 is full, maxelem 65536 reached
[   38.977279][   T31] kauditd_printk_skb: 71 callbacks suppressed
[   38.977316][   T31] audit: type=1326 audit(38.950:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7599 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   38.981719][   T31] audit: type=1326 audit(38.950:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7599 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   38.981754][   T31] audit: type=1326 audit(38.950:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7599 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   38.981779][   T31] audit: type=1326 audit(38.950:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7599 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   38.981797][   T31] audit: type=1326 audit(38.950:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7599 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=34 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   38.981812][   T31] audit: type=1326 audit(38.950:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7599 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   38.981828][   T31] audit: type=1326 audit(38.950:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7599 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   38.981843][   T31] audit: type=1326 audit(38.950:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7599 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   38.981857][   T31] audit: type=1326 audit(38.950:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7599 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   38.981871][   T31] audit: type=1326 audit(38.950:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7599 comm="syz.0.353" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   39.067198][ T7610] loop3: detected capacity change from 0 to 128
[   39.826788][    T9] cfg80211: failed to load regulatory.db
[   39.942197][ T7621] loop4: detected capacity change from 0 to 164
[   40.206870][ T7647] tipc: New replicast peer: 255.255.255.255
[   40.207245][ T7647] tipc: Enabled bearer <udp:syz2>, priority 10
[   40.339174][ T7676] Zero length message leads to an empty skb
[   40.394587][ T7681] netlink: 28 bytes leftover after parsing attributes in process `syz.0.382'.
[   40.394634][ T7681] netem: change failed
[   40.442046][ T7684] loop1: detected capacity change from 0 to 256
[   40.560524][ T7694] loop1: detected capacity change from 0 to 4096
[   40.617033][ T7694] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.622447][ T7694] EXT4-fs (loop1): shut down requested (2)
[   40.635333][ T7671] hub 6-0:1.0: USB hub found
[   40.647298][ T7671] hub 6-0:1.0: 8 ports detected
[   40.671474][ T6543] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.747544][ T7713] vhci_hcd: invalid port number 96
[   40.747580][ T7713] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[   40.896222][ T7726] 9p: Unknown access argument ����: -22
[   40.927395][ T7729] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2
[   40.927429][ T7729] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[   41.297825][ T7747] netlink: 'syz.2.407': attribute type 1 has an invalid length.
[   41.297860][ T7747] netlink: 5452 bytes leftover after parsing attributes in process `syz.2.407'.
[   41.442629][ T7765] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   41.635242][ T7787] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   41.916261][ T7790] hub 9-0:1.0: USB hub found
[   41.916414][ T7790] hub 9-0:1.0: 8 ports detected
[   41.947410][ T7793] batadv_slave_1: entered promiscuous mode
[   41.947858][ T7788] batadv_slave_1: left promiscuous mode
[   42.040744][ T7798] loop0: detected capacity change from 0 to 128
[   42.047509][ T7798] EXT4-fs warning (device loop0): ext4_init_metadata_csum:4627: metadata_csum and uninit_bg are redundant flags; please run fsck.
[   42.047549][ T7798] EXT4-fs (loop0): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[   42.057062][ T7806] loop1: detected capacity change from 0 to 1024
[   42.058856][ T7806] EXT4-fs: inline encryption not supported
[   42.059943][ T7806] EXT4-fs: Ignoring removed i_version option
[   42.075078][    T9] hid_parser_main: 33 callbacks suppressed
[   42.076240][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   42.079756][    T9] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   42.102661][ T7806] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.131331][ T7806] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[   42.188909][ T6543] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.219742][ T7815] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[   42.384161][ T7833] process 'syz.3.442' launched './file1' with NULL argv: empty string added
[   42.548469][ T7851] random: crng reseeded on system resumption
[   42.582165][ T7855] netlink: 36 bytes leftover after parsing attributes in process `syz.3.453'.
[   42.582205][ T7855] netlink: 8 bytes leftover after parsing attributes in process `syz.3.453'.
[   42.595689][ T7858] loop1: detected capacity change from 0 to 2048
[   42.619966][ T7858] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.706521][ T4718] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:8: bg 0: block 234: padding at end of block bitmap is not set
[   42.711678][ T4718] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 790 with error 28
[   42.715397][ T4718] EXT4-fs (loop1): This should not happen!! Data will be lost
[   42.715397][ T4718] 
[   42.717185][ T4718] EXT4-fs (loop1): Total free blocks count 0
[   42.718349][ T4718] EXT4-fs (loop1): Free/Dirty block details
[   42.719762][ T4718] EXT4-fs (loop1): free_blocks=0
[   42.720718][ T4718] EXT4-fs (loop1): dirty_blocks=800
[   42.721806][ T4718] EXT4-fs (loop1): Block reservation details
[   42.722946][ T4718] EXT4-fs (loop1): i_reserved_data_blocks=50
[   42.778517][ T6543] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.810324][ T7882] loop1: detected capacity change from 0 to 512
[   42.841439][ T7882] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.915839][ T6543] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.023028][ T7905] loop4: detected capacity change from 0 to 512
[   43.041112][ T7907] loop1: detected capacity change from 0 to 512
[   43.041494][ T7907] EXT4-fs: Ignoring removed nobh option
[   43.050487][ T7905] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.057939][ T7907] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.068158][ T7905] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   43.086537][ T6556] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.090983][ T6543] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.188431][ T7917] netlink: 4 bytes leftover after parsing attributes in process `syz.4.477'.
[   43.188470][ T7917] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   43.188484][ T7917] batman_adv: batadv0: Removing interface: batadv_slave_0
[   43.194530][ T7917] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   43.194554][ T7917] batman_adv: batadv0: Removing interface: batadv_slave_1
[   43.529171][ T7929] loop4: detected capacity change from 0 to 512
[   43.534868][ T7929] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   43.553499][ T7929] FAT-fs (loop4): FAT read failed (blocknr 1568)
[   43.564778][ T7929] FAT-fs (loop4): FAT read failed (blocknr 1568)
[   43.684977][ T7941] netlink: 256 bytes leftover after parsing attributes in process `syz.4.489'.
[   43.686556][ T7941] ksmbd: Unknown IPC event: 3, ignore.
[   43.757851][ T7950] lo speed is unknown, defaulting to 1000
[   43.759277][ T7950] lo speed is unknown, defaulting to 1000
[   43.761348][ T7950] lo speed is unknown, defaulting to 1000
[   43.764968][ T7950] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   43.769241][ T7950] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   43.777343][ T7950] lo speed is unknown, defaulting to 1000
[   43.779051][ T7950] lo speed is unknown, defaulting to 1000
[   43.780444][ T7950] lo speed is unknown, defaulting to 1000
[   43.781852][ T7950] lo speed is unknown, defaulting to 1000
[   43.783968][ T7950] lo speed is unknown, defaulting to 1000
[   43.986025][ T7976] loop3: detected capacity change from 0 to 512
[   43.986688][ T7976] EXT4-fs: Ignoring removed oldalloc option
[   43.986699][ T7976] EXT4-fs: inline encryption not supported
[   43.986706][ T7976] EXT4-fs: Ignoring removed mblk_io_submit option
[   43.988015][ T7976] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   44.001888][ T7979] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2
[   44.001919][ T7979] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[   44.034191][ T7976] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.504: bg 0: block 64: padding at end of block bitmap is not set
[   44.037058][ T7976] __quota_error: 190 callbacks suppressed
[   44.037091][ T7976] Quota error (device loop3): write_blk: dquota write failed
[   44.037140][ T7976] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[   44.037173][ T7976] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.504: Failed to acquire dquot type 0
[   44.043655][ T7976] EXT4-fs (loop3): 1 truncate cleaned up
[   44.047043][ T7976] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.072607][ T6542] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.130902][ T7996] netlink: 8 bytes leftover after parsing attributes in process `syz.1.512'.
[   44.158859][ T8000] loop1: detected capacity change from 0 to 512
[   44.164412][ T7998] loop3: detected capacity change from 0 to 512
[   44.166133][ T8000] EXT4-fs: Ignoring removed oldalloc option
[   44.176282][ T7998] EXT4-fs error (device loop3): ext4_xattr_inode_iget:442: comm syz.3.513: error while reading EA inode 32 err=-116
[   44.176953][ T7998] EXT4-fs (loop3): Remounting filesystem read-only
[   44.176978][ T7998] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   44.177007][ T7998] EXT4-fs (loop3): 1 orphan inode deleted
[   44.177457][ T7998] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.188897][ T8004] IPVS: length: 231 != 24
[   44.203147][ T6542] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.206555][ T8000] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.514: Parent and EA inode have the same ino 15
[   44.257477][ T8000] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.514: Parent and EA inode have the same ino 15
[   44.263336][ T8000] EXT4-fs (loop1): 1 orphan inode deleted
[   44.263759][ T8000] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.267486][ T8008] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   44.282689][ T6543] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.356680][ T8019] loop2: detected capacity change from 0 to 2048
[   44.407824][ T6686]  loop2: p1 < > p3
[   44.411764][ T6686] loop2: p3 size 54016 extends beyond EOD, truncated
[   44.425386][ T8019]  loop2: p1 < > p3
[   44.427898][ T8019] loop2: p3 size 54016 extends beyond EOD, truncated
[   44.449499][   T31] audit: type=1326 audit(44.420:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8027 comm="syz.1.527" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7f75b3a8 code=0x7ffc0000
[   44.449580][   T31] audit: type=1326 audit(44.420:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8027 comm="syz.1.527" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7f75b3a8 code=0x7ffc0000
[   44.454068][   T31] audit: type=1326 audit(44.430:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8027 comm="syz.1.527" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff7f75b3a8 code=0x7ffc0000
[   44.454093][   T31] audit: type=1326 audit(44.430:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8027 comm="syz.1.527" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7f75b3a8 code=0x7ffc0000
[   44.454107][   T31] audit: type=1326 audit(44.430:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8027 comm="syz.1.527" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7f75b3a8 code=0x7ffc0000
[   44.454120][   T31] audit: type=1326 audit(44.430:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8027 comm="syz.1.527" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff7f75b3a8 code=0x7ffc0000
[   44.454133][   T31] audit: type=1326 audit(44.430:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8027 comm="syz.1.527" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7f75b3a8 code=0x7ffc0000
[   44.457689][   T31] audit: type=1326 audit(44.430:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8027 comm="syz.1.527" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff7f75b3a8 code=0x7ffc0000
[   44.534417][ T8036] loop3: detected capacity change from 0 to 764
[   44.547109][ T6663] udevd[6663]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   44.548398][ T8036] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   44.550332][ T6686] udevd[6686]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   44.587514][ T8038] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.589944][ T8045] syz.4.534 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   44.595162][ T6686] udevd[6686]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   44.633329][ T8047] bridge0: entered promiscuous mode
[   44.634481][ T6663] udevd[6663]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   44.637180][ T8047] vlan2: entered promiscuous mode
[   44.655264][ T8050] ip6t_srh: unknown srh match flags  4000
[   44.677505][ T8038] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.734873][ T8038] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.807492][   T26] Process accounting resumed
[   44.819977][ T8038] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.859785][ T8064] Process accounting resumed
[   44.955177][ T4718] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   44.967987][ T8080] netlink: 12 bytes leftover after parsing attributes in process `syz.0.550'.
[   44.992941][ T8083] netlink: 'syz.3.552': attribute type 29 has an invalid length.
[   44.998663][   T12] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   45.000125][ T8078] lo speed is unknown, defaulting to 1000
[   45.007583][   T42] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   45.009593][   T42] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   45.025908][ T8084] netlink: 28 bytes leftover after parsing attributes in process `syz.1.551'.
[   45.079588][ T8095] netlink: 24 bytes leftover after parsing attributes in process `syz.2.556'.
[   45.229673][ T8111] loop3: detected capacity change from 0 to 512
[   45.250685][ T8111] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   45.256077][ T8111] EXT4-fs (loop3): mount failed
[   45.300682][ T8122] netlink: 24 bytes leftover after parsing attributes in process `syz.2.570'.
[   45.310626][ T8125] netlink: 8 bytes leftover after parsing attributes in process `syz.1.568'.
[   45.312931][ T8125] netlink: 28 bytes leftover after parsing attributes in process `syz.1.568'.
[   45.350242][ T8129] loop2: detected capacity change from 0 to 512
[   45.359085][ T8129] EXT4-fs (loop2): orphan cleanup on readonly fs
[   45.360186][ T8129] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #11: block 1728053262: comm syz.2.572: lblock 0 mapped to illegal pblock 1728053262 (length 1)
[   45.362283][ T8129] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   45.362386][ T8129] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #15: comm syz.2.572: corrupted inode contents
[   45.368545][ T8129] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #15: comm syz.2.572: mark_inode_dirty error
[   45.369332][ T8129] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #15: comm syz.2.572: corrupted inode contents
[   45.369526][ T8129] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2991: inode #15: comm syz.2.572: mark_inode_dirty error
[   45.369693][ T8129] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2994: inode #15: comm syz.2.572: mark inode dirty (error -117)
[   45.370372][ T8129] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[   45.370438][ T8129] EXT4-fs (loop2): 1 orphan inode deleted
[   45.388842][ T8134] netlink: 'syz.4.574': attribute type 3 has an invalid length.
[   45.388968][ T8134] netlink: 'syz.4.574': attribute type 3 has an invalid length.
[   45.393685][ T8129] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   45.417008][ T8129] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.828041][ T8175] loop2: detected capacity change from 0 to 512
[   45.829742][ T8175] msdos: Bad value for 'check'
[   45.832596][ T8175] netlink: 4 bytes leftover after parsing attributes in process `syz.2.591'.
[   46.004811][ T8184] loop0: detected capacity change from 0 to 512
[   46.005967][ T8184] EXT4-fs: Ignoring removed bh option
[   46.005980][ T8184] EXT4-fs: Ignoring removed mblk_io_submit option
[   46.016054][ T8184] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   46.019281][ T8184] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   46.019439][ T8184] EXT4-fs (loop0): orphan cleanup on readonly fs
[   46.023031][ T8184] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.595: Failed to acquire dquot type 1
[   46.023440][ T8184] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.595: Invalid block bitmap block 0 in block_group 0
[   46.026148][ T8184] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.595: Invalid block bitmap block 0 in block_group 0
[   46.026436][ T8184] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.595: Invalid block bitmap block 0 in block_group 0
[   46.026686][ T8184] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.595: Failed to acquire dquot type 1
[   46.027187][ T8184] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.595: Failed to acquire dquot type 1
[   46.027521][ T8184] EXT4-fs (loop0): 1 orphan inode deleted
[   46.045159][ T8184] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   46.057259][ T8187] loop3: detected capacity change from 0 to 2048
[   46.061376][ T6549] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.132056][ T6686] Alternate GPT is invalid, using primary GPT.
[   46.133901][ T6686]  loop3: p2 p3 p7
[   46.154006][ T8187] Alternate GPT is invalid, using primary GPT.
[   46.154478][ T8187]  loop3: p2 p3 p7
[   46.248920][ T6663] udevd[6663]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   46.250756][ T6686] udevd[6686]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   46.252707][ T6533] udevd[6533]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory
[   46.296287][ T8197] netlink: 'syz.0.601': attribute type 1 has an invalid length.
[   46.302552][ T6686] udevd[6686]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   46.305998][ T6914] udevd[6914]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory
[   46.329658][ T6533] udevd[6533]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   46.347211][ T8203] loop0: detected capacity change from 0 to 512
[   46.354032][ T8203] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   46.354164][ T8203] EXT4-fs (loop0): orphan cleanup on readonly fs
[   46.357678][ T8203] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.604: Failed to acquire dquot type 1
[   46.360700][ T8203] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.604: bg 0: block 40: padding at end of block bitmap is not set
[   46.363518][ T8203] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   46.367155][ T8203] EXT4-fs (loop0): 1 truncate cleaned up
[   46.369100][ T8203] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   46.396367][ T6549] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.466815][ T8211] netlink: 'syz.0.608': attribute type 29 has an invalid length.
[   46.467486][ T8211] netlink: 'syz.0.608': attribute type 29 has an invalid length.
[   46.606417][ T8228] loop0: detected capacity change from 0 to 512
[   46.609428][ T8228] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   46.611278][ T8228] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[   46.616872][ T8228] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[   46.616926][ T8228] System zones: 0-2, 18-18, 34-35
[   46.617570][ T8228] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   46.650973][ T6549] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.981103][ T8270] loop3: detected capacity change from 0 to 2048
[   47.248128][ T8270] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.250788][ T8275] loop4: detected capacity change from 0 to 512
[   47.259281][ T8275] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   47.262064][ T8275] EXT4-fs (loop4): orphan cleanup on readonly fs
[   47.263931][ T8275] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.624: Failed to acquire dquot type 1
[   47.269880][ T8275] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.624: bg 0: block 40: padding at end of block bitmap is not set
[   47.273065][ T8275] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   47.280635][ T8275] EXT4-fs (loop4): 1 truncate cleaned up
[   47.283500][ T8275] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   47.312532][ T6556] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.326434][ T8270] team0 (unregistering): Port device team_slave_0 removed
[   47.329941][ T8270] team0 (unregistering): Port device team_slave_1 removed
[   47.417864][ T8297] loop9: detected capacity change from 0 to 7
[   47.419447][ T8297] Buffer I/O error on dev loop9, logical block 0, async page read
[   47.421507][ T8297] Buffer I/O error on dev loop9, logical block 0, async page read
[   47.424985][ T8297] Buffer I/O error on dev loop9, logical block 0, async page read
[   47.426547][ T8297] Buffer I/O error on dev loop9, logical block 0, async page read
[   47.428360][ T8297] Buffer I/O error on dev loop9, logical block 0, async page read
[   47.431237][ T6542] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.431684][ T8297] Buffer I/O error on dev loop9, logical block 0, async page read
[   47.431729][ T8297] Buffer I/O error on dev loop9, logical block 0, async page read
[   47.431752][ T8297] ldm_validate_partition_table(): Disk read failed.
[   47.431769][ T8297] Buffer I/O error on dev loop9, logical block 0, async page read
[   47.431799][ T8297] Buffer I/O error on dev loop9, logical block 0, async page read
[   47.431829][ T8297] Buffer I/O error on dev loop9, logical block 0, async page read
[   47.431874][ T8297] Dev loop9: unable to read RDB block 0
[   47.431954][ T8297]  loop9: unable to read partition table
[   47.432179][ T8297] loop9: partition table beyond EOD, truncated
[   47.445081][ T8297] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[   47.445081][ T8297] 
) failed (rc=-5)
[   47.537496][ T6557] kernel write not supported for file /252/clear_refs (pid: 6557 comm: kworker/1:2)
[   47.560541][ T8312] loop4: detected capacity change from 0 to 512
[   47.591910][ T8312] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.620423][ T8312] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   47.630025][ T6556] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.771786][ T8332] loop0: detected capacity change from 0 to 2048
[   47.830904][ T6686]  loop0: p2 p3 p7
[   47.935287][ T8332]  loop0: p2 p3 p7
[   47.950957][ T8350] xt_connbytes: Forcing CT accounting to be enabled
[   47.951045][ T8350] set match dimension is over the limit!
[   47.951275][ T8346] loop3: detected capacity change from 0 to 4096
[   47.979425][ T8346] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.027971][ T6542] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.077924][ T8364] netlink: 'syz.4.659': attribute type 27 has an invalid length.
[   48.197254][ T8376] __nla_validate_parse: 3 callbacks suppressed
[   48.197307][ T8376] netlink: 12 bytes leftover after parsing attributes in process `syz.4.664'.
[   49.164747][ T8393] loop4: detected capacity change from 0 to 1024
[   49.174245][ T8393] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   49.206286][ T8393] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.339526][   T31] kauditd_printk_skb: 156 callbacks suppressed
[   49.339558][   T31] audit: type=1326 audit(49.310:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8405 comm="syz.3.671" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff97b5b3a8 code=0x7ffc0000
[   49.346563][   T31] audit: type=1326 audit(49.320:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8405 comm="syz.3.671" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=197 compat=0 ip=0xffff97b5b3a8 code=0x7ffc0000
[   49.346600][   T31] audit: type=1326 audit(49.320:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8405 comm="syz.3.671" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff97b5b3a8 code=0x7ffc0000
[   49.346630][   T31] audit: type=1326 audit(49.320:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8405 comm="syz.3.671" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff97b5b3a8 code=0x7ffc0000
[   49.384121][ T6556] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.466579][   T31] audit: type=1326 audit(49.430:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8414 comm="syz.1.675" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7f75b3a8 code=0x7ffc0000
[   49.467251][   T31] audit: type=1326 audit(49.430:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8414 comm="syz.1.675" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=109 compat=0 ip=0xffff7f75b3a8 code=0x7ffc0000
[   49.467970][   T31] audit: type=1326 audit(49.430:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8414 comm="syz.1.675" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7f75b3a8 code=0x7ffc0000
[   49.468596][   T31] audit: type=1326 audit(49.430:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8414 comm="syz.1.675" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7f75b3a8 code=0x7ffc0000
[   49.469322][   T31] audit: type=1326 audit(49.430:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8414 comm="syz.1.675" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffff7f75b3a8 code=0x7ffc0000
[   49.469998][   T31] audit: type=1326 audit(49.430:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8414 comm="syz.1.675" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7f75b3a8 code=0x7ffc0000
[   49.518548][ T8423] netlink: 62967 bytes leftover after parsing attributes in process `syz.3.677'.
[   49.524866][   T14] Bluetooth: hci5: Frame reassembly failed (-84)
[   49.713263][ T8453] loop3: detected capacity change from 0 to 128
[   49.758864][ T8453] bio_check_eod: 7 callbacks suppressed
[   49.758911][ T8453] syz.3.685: attempt to access beyond end of device
[   49.758911][ T8453] loop3: rw=2049, sector=145, nr_sectors = 8 limit=128
[   49.759218][ T8453] syz.3.685: attempt to access beyond end of device
[   49.759218][ T8453] loop3: rw=2049, sector=161, nr_sectors = 8 limit=128
[   49.759433][ T8453] syz.3.685: attempt to access beyond end of device
[   49.759433][ T8453] loop3: rw=2049, sector=177, nr_sectors = 24 limit=128
[   49.759477][ T8453] syz.3.685: attempt to access beyond end of device
[   49.759477][ T8453] loop3: rw=2049, sector=209, nr_sectors = 8 limit=128
[   49.759510][ T8453] syz.3.685: attempt to access beyond end of device
[   49.759510][ T8453] loop3: rw=2049, sector=225, nr_sectors = 8 limit=128
[   49.759564][ T8453] syz.3.685: attempt to access beyond end of device
[   49.759564][ T8453] loop3: rw=2049, sector=241, nr_sectors = 8 limit=128
[   49.759596][ T8453] syz.3.685: attempt to access beyond end of device
[   49.759596][ T8453] loop3: rw=2049, sector=257, nr_sectors = 8 limit=128
[   49.759631][ T8453] syz.3.685: attempt to access beyond end of device
[   49.759631][ T8453] loop3: rw=2049, sector=273, nr_sectors = 8 limit=128
[   49.759667][ T8453] syz.3.685: attempt to access beyond end of device
[   49.759667][ T8453] loop3: rw=2049, sector=289, nr_sectors = 9 limit=128
[   49.827951][ T8453] syz.3.685: attempt to access beyond end of device
[   49.827951][ T8453] loop3: rw=2049, sector=305, nr_sectors = 80 limit=128
[   49.920795][ T8480] netlink: 16 bytes leftover after parsing attributes in process `syz.4.695'.
[   49.996284][ T8483] loop0: detected capacity change from 0 to 512
[   49.996646][ T8483] EXT4-fs: Ignoring removed nobh option
[   50.015418][ T8483] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.063870][ T6549] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.165343][ T8493] netlink: 96 bytes leftover after parsing attributes in process `syz.0.700'.
[   50.245397][ T8498] loop2: detected capacity change from 0 to 1024
[   50.263592][ T8498] EXT4-fs: Ignoring removed nobh option
[   50.264623][ T8498] EXT4-fs: Ignoring removed bh option
[   50.267817][ T8498] EXT4-fs (loop2): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   50.393635][ T8511] netlink: 'syz.0.709': attribute type 10 has an invalid length.
[   50.506505][ T8498] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.554322][ T6550] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.649458][ T8538] loop2: detected capacity change from 0 to 2048
[   50.668643][ T8538] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.678481][ T8538] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.717: bg 0: block 2: invalid block bitmap
[   50.696565][ T8547] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[   50.701939][ T8538] EXT4-fs (loop2): Remounting filesystem read-only
[   50.712472][ T6550] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.734317][ T8547] netlink: 8 bytes leftover after parsing attributes in process `syz.3.724'.
[   50.763408][ T8554] loop2: detected capacity change from 0 to 1024
[   50.763987][ T8554] EXT4-fs: Ignoring removed bh option
[   50.769450][ T6557] IPVS: starting estimator thread 0...
[   50.770772][ T8554] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   50.792214][ T8556] loop0: detected capacity change from 0 to 2048
[   50.800784][ T8554] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.816666][ T8556] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.840751][ T6550] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.863484][ T8557] IPVS: using max 49 ests per chain, 117600 per kthread
[   50.876311][ T6549] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.878091][ T8570] loop4: detected capacity change from 0 to 512
[   50.921406][ T8570] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.941533][ T6556] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.011483][ T8593] loop3: detected capacity change from 0 to 1024
[   51.011914][ T8593] EXT4-fs: Ignoring removed nobh option
[   51.026178][ T8593] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.056815][ T8593] EXT4-fs error (device loop3): mb_free_blocks:2017: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[   51.081109][ T6542] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.186406][ T8606] loop3: detected capacity change from 0 to 512
[   51.207454][ T8606] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   51.207582][ T8606] EXT4-fs (loop3): orphan cleanup on readonly fs
[   51.209939][ T8606] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.746: corrupted inode contents
[   51.210856][ T8606] EXT4-fs (loop3): Remounting filesystem read-only
[   51.210962][ T8606] EXT4-fs (loop3): 1 truncate cleaned up
[   51.211350][ T4718] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   51.211363][ T4718] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   51.211388][ T4718] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[   51.211968][ T8606] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   51.224545][ T6542] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.303915][ T8611] bond1: entered promiscuous mode
[   51.308457][ T8611] bond_slave_0: entered promiscuous mode
[   51.308524][ T8611] bond_slave_1: entered promiscuous mode
[   51.309062][ T8611] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   51.309775][ T8611] bond1: (slave macvlan2): making interface the new active one
[   51.309785][ T8611] macvlan2: entered promiscuous mode
[   51.309792][ T8611] bond0: entered promiscuous mode
[   51.310791][ T8611] bond1: (slave macvlan2): Enslaving as an active interface with an up link
[   51.312596][ T8611] netlink: 'syz.3.747': attribute type 10 has an invalid length.
[   51.313233][ T8611] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.313407][ T8611] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.316625][ T8611] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.316656][ T8611] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.316736][ T8611] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.316763][ T8611] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.317879][ T8611] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   51.542803][   T52] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   51.543818][ T6548] Bluetooth: hci5: command 0x1003 tx timeout
[   51.800019][ T8616] lo speed is unknown, defaulting to 1000
[   51.976096][ T8620] loop0: detected capacity change from 0 to 128
[   52.028632][ T8620] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   52.097719][ T8638] loop3: detected capacity change from 0 to 1024
[   52.098003][ T6549] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   52.103732][ T8638] EXT4-fs: Ignoring removed nobh option
[   52.168099][ T8641] netlink: 'syz.4.759': attribute type 4 has an invalid length.
[   52.171659][ T8641] netlink: 152 bytes leftover after parsing attributes in process `syz.4.759'.
[   52.194468][ T8641] .`: renamed from bond0 (while UP)
[   52.211021][ T8638] EXT4-fs error (device loop3): mb_free_blocks:2017: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[   52.307493][ T8659] loop0: detected capacity change from 0 to 512
[   52.332097][ T8659] EXT4-fs (loop0): too many log groups per flexible block group
[   52.332232][ T8659] EXT4-fs (loop0): failed to initialize mballoc (-12)
[   52.332273][ T8659] EXT4-fs (loop0): mount failed
[   52.605849][ T8683] loop1: detected capacity change from 0 to 1024
[   52.954129][ T8690] loop3: detected capacity change from 0 to 512
[   53.025856][ T8689] lo speed is unknown, defaulting to 1000
[   53.086179][ T8702] loop2: detected capacity change from 0 to 2048
[   53.149984][ T6914] Alternate GPT is invalid, using primary GPT.
[   53.151159][ T6914]  loop2: p1 p2 p3
[   53.190970][ T8702] Alternate GPT is invalid, using primary GPT.
[   53.191063][ T8702]  loop2: p1 p2 p3
[   53.300648][ T8718] netlink: 5452 bytes leftover after parsing attributes in process `syz.2.787'.
[   53.323796][ T8719] loop1: detected capacity change from 0 to 512
[   53.346521][ T8719] EXT4-fs warning (device loop1): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   53.347093][ T8719] EXT4-fs (loop1): mount failed
[   53.347297][ T8722] loop0: detected capacity change from 0 to 128
[   53.347746][ T8722] vfat: Unknown parameter '�|�;�~'
[   53.478112][ T8726] loop2: detected capacity change from 0 to 1024
[   53.479758][ T8726] EXT4-fs: Ignoring removed nobh option
[   53.561631][ T8726] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[   53.699362][ T8744] loop1: detected capacity change from 0 to 512
[   53.805408][ T8751] loop0: detected capacity change from 0 to 1024
[   53.813963][ T6686] udevd[6686]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   53.816598][ T8751] EXT4-fs: Ignoring removed nomblk_io_submit option
[   53.875847][ T6663] udevd[6663]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   53.914191][ T8760] loop4: detected capacity change from 0 to 2048
[   53.922224][ T6662] udevd[6662]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   54.037046][ T8760] EXT4-fs error (device loop4): ext4_find_extent:939: inode #2: comm syz.4.804: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   54.041476][ T8760] EXT4-fs (loop4): Remounting filesystem read-only
[   54.158501][ T8770] lo speed is unknown, defaulting to 1000
[   54.343337][   T31] kauditd_printk_skb: 178 callbacks suppressed
[   54.343380][   T31] audit: type=1326 audit(54.320:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8762 comm="syz.0.805" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   54.349968][   T31] audit: type=1326 audit(54.320:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8762 comm="syz.0.805" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   54.364168][   T31] audit: type=1326 audit(54.340:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8762 comm="syz.0.805" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=83 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   54.367782][   T31] audit: type=1326 audit(54.340:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8762 comm="syz.0.805" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   54.371498][   T31] audit: type=1326 audit(54.340:730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8762 comm="syz.0.805" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   54.375385][   T31] audit: type=1326 audit(54.350:731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8762 comm="syz.0.805" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=233 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   54.386418][   T31] audit: type=1326 audit(54.360:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8762 comm="syz.0.805" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   54.390120][   T31] audit: type=1326 audit(54.360:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8762 comm="syz.0.805" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   54.405098][   T31] audit: type=1326 audit(54.380:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8762 comm="syz.0.805" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=46 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   54.410830][ T6686] udevd[6686]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   54.413521][ T6531] udevd[6531]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   54.418548][   T31] audit: type=1326 audit(54.390:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8762 comm="syz.0.805" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675b3a8 code=0x7ffc0000
[   54.461330][ T8784] netlink: 12 bytes leftover after parsing attributes in process `syz.1.811'.
[   54.472372][ T8778] udevd[8778]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   54.490504][ T8786] netlink: 8 bytes leftover after parsing attributes in process `syz.0.812'.
[   54.554153][ T8788] loop1: detected capacity change from 0 to 1024
[   54.555778][ T8788] EXT4-fs: Ignoring removed bh option
[   54.576006][ T8788] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   54.754780][ T8811] loop4: detected capacity change from 0 to 1024
[   54.764140][ T8811] EXT4-fs: Ignoring removed nobh option
[   54.812673][ T8813] netlink: 'syz.1.824': attribute type 21 has an invalid length.
[   54.812814][ T8813] netlink: 132 bytes leftover after parsing attributes in process `syz.1.824'.
[   54.812824][ T8813] netlink: 20 bytes leftover after parsing attributes in process `syz.1.824'.
[   54.878028][ T8817] loop3: detected capacity change from 0 to 1024
[   54.878429][   T14] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 15: block 145:freeing already freed block (bit 9); block bitmap corrupt.
[   54.899230][ T8819] netlink: 68 bytes leftover after parsing attributes in process `syz.2.826'.
[   54.913254][ T8822] netlink: 8 bytes leftover after parsing attributes in process `syz.1.827'.
[   54.941904][ T8827] loop4: detected capacity change from 0 to 1024
[   55.200649][ T8856] netlink: 12 bytes leftover after parsing attributes in process `syz.3.840'.
[   55.409235][ T8880] loop1: detected capacity change from 0 to 1024
[   55.413251][ T8880] EXT4-fs: Ignoring removed nobh option
[   55.417619][ T8883] netlink: 128 bytes leftover after parsing attributes in process `syz.3.854'.
[   55.438603][ T8885] netlink: 'syz.4.855': attribute type 30 has an invalid length.
[   55.474598][   T41] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 15: block 145:freeing already freed block (bit 9); block bitmap corrupt.
[   55.519994][ T8894] netlink: 16 bytes leftover after parsing attributes in process `syz.1.857'.
[   55.627646][ T8907] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   55.700348][ T8910] loop1: detected capacity change from 0 to 512
[   55.700725][ T8910] EXT4-fs: Ignoring removed nobh option
[   55.836611][ T8926] loop3: detected capacity change from 0 to 512
[   55.850387][ T8926] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.873: bad orphan inode 11862016
[   56.094398][ T8930] loop0: detected capacity change from 0 to 512
[   56.094830][ T8930] ext4: Unknown parameter 'seclabel'
[   56.106777][ T8910] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #3: comm syz.1.866: corrupted inode contents
[   56.109230][ T8910] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #3: comm syz.1.866: mark_inode_dirty error
[   56.115078][ T8910] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #3: comm syz.1.866: corrupted inode contents
[   56.117467][ T8910] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #3: comm syz.1.866: mark_inode_dirty error
[   56.119439][ T8910] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.866: Failed to acquire dquot type 0
[   56.120551][ T8910] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.866: corrupted inode contents
[   56.120705][ T8910] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #16: comm syz.1.866: mark_inode_dirty error
[   56.120815][ T8910] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.866: corrupted inode contents
[   56.120917][ T8910] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #16: comm syz.1.866: mark_inode_dirty error
[   56.121029][ T8910] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.866: corrupted inode contents
[   56.121137][ T8910] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[   56.124807][ T8910] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.866: corrupted inode contents
[   56.131784][ T8910] EXT4-fs error (device loop1): ext4_truncate:4666: inode #16: comm syz.1.866: mark_inode_dirty error
[   56.135681][ T8910] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[   56.140409][ T8910] EXT4-fs (loop1): 1 truncate cleaned up
[   56.148125][ T8910] xt_hashlimit: max too large, truncated to 1048576
[   56.154757][ T8910] xt_CONNSECMARK: invalid mode: 66
[   56.475653][ T8955] loop3: detected capacity change from 0 to 1024
[   56.476067][ T8955] EXT4-fs: Ignoring removed nobh option
[   56.505431][ T8955] EXT4-fs error (device loop3): mb_free_blocks:2017: group 0, inode 15: block 129:freeing already freed block (bit 8); block bitmap corrupt.
[   56.564613][ T6593] IPVS: starting estimator thread 0...
[   56.616106][ T8960] loop4: detected capacity change from 0 to 2048
[   56.652828][ T8961] IPVS: using max 41 ests per chain, 98400 per kthread
[   56.678051][ T8968] loop0: detected capacity change from 0 to 512
[   56.840425][ T8985] loop0: detected capacity change from 0 to 512
[   56.872227][ T8988] loop2: detected capacity change from 0 to 1024
[   56.872631][ T8988] EXT4-fs: Ignoring removed nobh option
[   56.880587][ T8985] 
[   56.880988][ T8985] ======================================================
[   56.882126][ T8985] WARNING: possible circular locking dependency detected
[   56.883251][ T8985] syzkaller #0 Not tainted
[   56.883919][ T8985] ------------------------------------------------------
[   56.884998][ T8985] wޣ��/8985 is trying to acquire lock:
[   56.885807][ T8985] ffff0000c7b34b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x150/0x2a0
[   56.887289][ T8985] 
[   56.887289][ T8985] but task is already holding lock:
[   56.888331][ T8985] ffff0000f770f388 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x358/0x6fc
[   56.889835][ T8985] 
[   56.889835][ T8985] which lock already depends on the new lock.
[   56.889835][ T8985] 
[   56.891568][ T8985] 
[   56.891568][ T8985] the existing dependency chain (in reverse order) is:
[   56.893003][ T8985] 
[   56.893003][ T8985] -> #1 (&ei->xattr_sem){++++}-{4:4}:
[   56.894195][ T8985]        down_write+0x50/0xc0
[   56.894992][ T8985]        ext4_xattr_set_handle+0x11c/0x1260
[   56.895901][ T8985]        ext4_initxattrs+0xa4/0x11c
[   56.896737][ T8985]        security_inode_init_security+0x6dc/0x7f4
[   56.897736][ T8985]        ext4_init_security+0x44/0x58
[   56.898513][ T8985]        __ext4_new_inode+0x27f4/0x3190
[   56.899432][ T8985]        ext4_ext_migrate+0x4b8/0xd10
[   56.900291][ T8985]        ext4_ioctl+0x16d4/0x309c
[   56.901093][ T8985]        __arm64_sys_ioctl+0x14c/0x1c4
[   56.901966][ T8985]        invoke_syscall+0x98/0x254
[   56.902767][ T8985]        el0_svc_common+0x130/0x23c
[   56.903604][ T8985]        do_el0_svc+0x48/0x58
[   56.904324][ T8985]        el0_svc+0x5c/0x254
[   56.905018][ T8985]        el0t_64_sync_handler+0x84/0x12c
[   56.905946][ T8985]        el0t_64_sync+0x198/0x19c
[   56.906785][ T8985] 
[   56.906785][ T8985] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[   56.908098][ T8985]        __lock_acquire+0x1774/0x30a4
[   56.908942][ T8985]        lock_acquire+0x14c/0x2e0
[   56.909780][ T8985]        percpu_down_read_internal+0x5c/0x298
[   56.910725][ T8985]        ext4_writepages+0x150/0x2a0
[   56.911560][ T8985]        do_writepages+0x270/0x468
[   56.912385][ T8985]        __writeback_single_inode+0x15c/0x13e8
[   56.913359][ T8985]        writeback_single_inode+0x18c/0x54c
[   56.914234][ T8985]        write_inode_now+0x13c/0x1a4
[   56.915001][ T8985]        iput+0x570/0x83c
[   56.915609][ T8985]        ext4_xattr_block_set+0x13dc/0x24bc
[   56.916510][ T8985]        ext4_expand_extra_isize_ea+0xeb4/0x182c
[   56.917458][ T8985]        __ext4_expand_extra_isize+0x2a0/0x37c
[   56.918410][ T8985]        __ext4_mark_inode_dirty+0x3c0/0x6fc
[   56.919317][ T8985]        ext4_evict_inode+0x930/0x1084
[   56.920193][ T8985]        evict+0x414/0x928
[   56.920826][ T8985]        iput+0x6e4/0x83c
[   56.921527][ T8985]        ext4_process_orphan+0x240/0x2b4
[   56.922482][ T8985]        ext4_orphan_cleanup+0x930/0x107c
[   56.923414][ T8985]        ext4_fill_super+0x4724/0x4ea4
[   56.924355][ T8985]        get_tree_bdev_flags+0x360/0x414
[   56.925339][ T8985]        get_tree_bdev+0x2c/0x3c
[   56.926174][ T8985]        ext4_get_tree+0x28/0x38
[   56.927060][ T8985]        vfs_get_tree+0x90/0x28c
[   56.927852][ T8985]        do_new_mount+0x278/0x7f4
[   56.928643][ T8985]        path_mount+0x5b4/0xde0
[   56.929395][ T8985]        __arm64_sys_mount+0x3e8/0x468
[   56.930245][ T8985]        invoke_syscall+0x98/0x254
[   56.931046][ T8985]        el0_svc_common+0x130/0x23c
[   56.931847][ T8985]        do_el0_svc+0x48/0x58
[   56.932570][ T8985]        el0_svc+0x5c/0x254
[   56.933297][ T8985]        el0t_64_sync_handler+0x84/0x12c
[   56.934159][ T8985]        el0t_64_sync+0x198/0x19c
[   56.934881][ T8985] 
[   56.934881][ T8985] other info that might help us debug this:
[   56.934881][ T8985] 
[   56.936325][ T8985]  Possible unsafe locking scenario:
[   56.936325][ T8985] 
[   56.937500][ T8985]        CPU0                    CPU1
[   56.938326][ T8985]        ----                    ----
[   56.939095][ T8985]   lock(&ei->xattr_sem);
[   56.939754][ T8985]                                lock(&sbi->s_writepages_rwsem);
[   56.940876][ T8985]                                lock(&ei->xattr_sem);
[   56.941866][ T8985]   rlock(&sbi->s_writepages_rwsem);
[   56.942684][ T8985] 
[   56.942684][ T8985]  *** DEADLOCK ***
[   56.942684][ T8985] 
[   56.943884][ T8985] 3 locks held by wޣ��/8985:
[   56.944631][ T8985]  #0: ffff0000c7b320e0 (&type->s_umount_key#26/1){+.+.}-{4:4}, at: alloc_super+0x1a0/0x80c
[   56.946205][ T8985]  #1: ffff0000c7b32618 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b0/0x1084
[   56.947656][ T8985]  #2: ffff0000f770f388 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x358/0x6fc
[   56.949274][ T8985] 
[   56.949274][ T8985] stack backtrace:
[   56.950094][ T8985] CPU: 1 UID: 0 PID: 8985 Comm: wޣ�� Not tainted syzkaller #0 PREEMPT 
[   56.951405][ T8985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[   56.952989][ T8985] Call trace:
[   56.953524][ T8985]  show_stack+0x2c/0x3c (C)
[   56.954231][ T8985]  __dump_stack+0x30/0x40
[   56.954942][ T8985]  dump_stack_lvl+0xd8/0x12c
[   56.955651][ T8985]  dump_stack+0x1c/0x28
[   56.956327][ T8985]  print_circular_bug+0x324/0x32c
[   56.957098][ T8985]  check_noncircular+0x154/0x174
[   56.957929][ T8985]  __lock_acquire+0x1774/0x30a4
[   56.958686][ T8985]  lock_acquire+0x14c/0x2e0
[   56.959336][ T8985]  percpu_down_read_internal+0x5c/0x298
[   56.960122][ T8985]  ext4_writepages+0x150/0x2a0
[   56.960812][ T8985]  do_writepages+0x270/0x468
[   56.961512][ T8985]  __writeback_single_inode+0x15c/0x13e8
[   56.962356][ T8985]  writeback_single_inode+0x18c/0x54c
[   56.963143][ T8985]  write_inode_now+0x13c/0x1a4
[   56.963874][ T8985]  iput+0x570/0x83c
[   56.964494][ T8985]  ext4_xattr_block_set+0x13dc/0x24bc
[   56.965405][ T8985]  ext4_expand_extra_isize_ea+0xeb4/0x182c
[   56.966370][ T8985]  __ext4_expand_extra_isize+0x2a0/0x37c
[   56.967218][ T8985]  __ext4_mark_inode_dirty+0x3c0/0x6fc
[   56.968043][ T8985]  ext4_evict_inode+0x930/0x1084
[   56.968892][ T8985]  evict+0x414/0x928
[   56.969501][ T8985]  iput+0x6e4/0x83c
[   56.970121][ T8985]  ext4_process_orphan+0x240/0x2b4
[   56.970932][ T8985]  ext4_orphan_cleanup+0x930/0x107c
[   56.971766][ T8985]  ext4_fill_super+0x4724/0x4ea4
[   56.972517][ T8985]  get_tree_bdev_flags+0x360/0x414
[   56.973254][ T8985]  get_tree_bdev+0x2c/0x3c
[   56.973919][ T8985]  ext4_get_tree+0x28/0x38
[   56.974621][ T8985]  vfs_get_tree+0x90/0x28c
[   56.975369][ T8985]  do_new_mount+0x278/0x7f4
[   56.976101][ T8985]  path_mount+0x5b4/0xde0
[   56.976790][ T8985]  __arm64_sys_mount+0x3e8/0x468
[   56.977601][ T8985]  invoke_syscall+0x98/0x254
[   56.978338][ T8985]  el0_svc_common+0x130/0x23c
[   56.979086][ T8985]  do_el0_svc+0x48/0x58
[   56.979771][ T8985]  el0_svc+0x5c/0x254
[   56.980439][ T8985]  el0t_64_sync_handler+0x84/0x12c
[   56.981276][ T8985]  el0t_64_sync+0x198/0x19c
[   56.982049][    C1] vkms_vblank_simulate: vblank timer overrun
[   56.988346][ T8991] netlink: 'syz.4.898': attribute type 21 has an invalid length.
[   56.998457][ T8985] ------------[ cut here ]------------
[   56.998483][ T8985] EA inode 11 i_nlink=2
[   57.002031][ T8985] WARNING: CPU: 0 PID: 8985 at fs/ext4/xattr.c:1053 ext4_xattr_inode_update_ref+0x444/0x488
[   57.004333][ T8985] Modules linked in:
[   57.004896][ T8985] CPU: 0 UID: 0 PID: 8985 Comm: wޣ�� Not tainted syzkaller #0 PREEMPT 
[   57.006234][ T8985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[   57.007873][ T8985] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--)
[   57.009046][ T8985] pc : ext4_xattr_inode_update_ref+0x444/0x488
[   57.010041][ T8985] lr : ext4_xattr_inode_update_ref+0x444/0x488
[   57.011025][ T8985] sp : ffff80009eb66dc0
[   57.011632][ T8985] x29: ffff80009eb66e50 x28: 0000000000000000 x27: 1fffe0001f2357bd
[   57.012826][ T8985] x26: dfff800000000000 x25: ffff80009eb66dc0 x24: ffff700013d6cdb8
[   57.014173][ T8985] x23: ffff800092ef2000 x22: ffff0000f91abc38 x21: 0000000000000002
[   57.015382][ T8985] x20: 0000000000000001 x19: ffff0000f91abbf8 x18: 0000000000000000
[   57.016564][ T8985] x17: 0000000000000000 x16: ffff80008b065bd0 x15: 0000000000000001
[   57.017749][ T8985] x14: 1fffe00033774708 x13: 0000000000000000 x12: 0000000000000000
[   57.018933][ T8985] x11: 0000000000080000 x10: 0000000000000003 x9 : 15169e530c0b7600
[   57.020052][ T8985] x8 : 15169e530c0b7600 x7 : 0000000000000000 x6 : ffff800080493890
[   57.021243][ T8985] x5 : 0000000000000000 x4 : 0000000000000001 x3 : 0000000000000010
[   57.022588][ T8985] x2 : ffff80009eb66980 x1 : ffff80008b6b38c0 x0 : 0000000000000001
[   57.023937][ T8985] Call trace:
[   57.024496][ T8985]  ext4_xattr_inode_update_ref+0x444/0x488 (P)
[   57.025534][ T8985]  ext4_xattr_set_entry+0x928/0x15c0
[   57.026405][ T8985]  ext4_xattr_ibody_set+0x204/0x5fc
[   57.027284][ T8985]  ext4_expand_extra_isize_ea+0xefc/0x182c
[   57.028282][ T8985]  __ext4_expand_extra_isize+0x2a0/0x37c
[   57.029227][ T8985]  __ext4_mark_inode_dirty+0x3c0/0x6fc
[   57.030064][ T8985]  ext4_evict_inode+0x930/0x1084
[   57.030837][ T8985]  evict+0x414/0x928
[   57.031412][ T8985]  iput+0x6e4/0x83c
[   57.032005][ T8985]  ext4_process_orphan+0x240/0x2b4
[   57.032834][ T8985]  ext4_orphan_cleanup+0x930/0x107c
[   57.033634][ T8985]  ext4_fill_super+0x4724/0x4ea4
[   57.034428][ T8985]  get_tree_bdev_flags+0x360/0x414
[   57.035205][ T8985]  get_tree_bdev+0x2c/0x3c
[   57.035826][ T8985]  ext4_get_tree+0x28/0x38
[   57.036437][ T8985]  vfs_get_tree+0x90/0x28c
[   57.037042][ T8985]  do_new_mount+0x278/0x7f4
[   57.037799][ T8985]  path_mount+0x5b4/0xde0
[   57.038525][ T8985]  __arm64_sys_mount+0x3e8/0x468
[   57.039340][ T8985]  invoke_syscall+0x98/0x254
[   57.040037][ T8985]  el0_svc_common+0x130/0x23c
[   57.040759][ T8985]  do_el0_svc+0x48/0x58
[   57.041426][ T8985]  el0_svc+0x5c/0x254
[   57.042048][ T8985]  el0t_64_sync_handler+0x84/0x12c
[   57.042867][ T8985]  el0t_64_sync+0x198/0x19c
[   57.043559][ T8985] irq event stamp: 2813
[   57.044184][ T8985] hardirqs last  enabled at (2813): [<ffff80008b0878f8>] _raw_spin_unlock_irqrestore+0x38/0x98
[   57.045692][ T8985] hardirqs last disabled at (2812): [<ffff80008b087728>] _raw_spin_lock_irqsave+0x2c/0x7c
[   57.047279][ T8985] softirqs last  enabled at (1570): [<ffff800080202608>] local_bh_enable+0x10/0x34
[   57.048721][ T8985] softirqs last disabled at (1568): [<ffff8000802025d4>] local_bh_disable+0x10/0x34
[   57.050161][ T8985] ---[ end trace 0000000000000000 ]---
[   57.077183][ T8988] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 15: block 129:freeing already freed block (bit 8); block bitmap corrupt.
[   57.079230][ T8985] EXT4-fs (loop0): 1 orphan inode deleted
[   64.503113][ T2426] ieee802154 phy0 wpan0: encryption failed: -22
[   64.503154][ T2426] ieee802154 phy1 wpan1: encryption failed: -22